As a Senior Application Security Engineer you will design and champion the DevSecOps philosophy by embedding security into our development and operations processes. Our team is dedicated to fostering a culture where security is everyone's responsibility and seamlessly integrated into all aspects of our work. You will collaborate with developers, and like minded security professionals to design, develop, and automate, security and compliance checks within our software development lifecycle. By proactively identifying and mitigating security findings, you will help us to build and maintain secure software applications efficiently. Your contributions will be critical in enhancing our overall security posture, reducing the efforts developers have to take in mitigating security related issues.
INCLUSIVE BY DESIGN At Zalando, our vision is to be inclusive by design. And this vision starts with our hiring - we do not discriminate on the basis of gender identity, sexual orientation, personal expression, ethnicity, religious belief, or disability status. You are welcome to leave out your picture, age, or marital status from your application. We only assess candidates on their qualifications and merit.
We want to provide you with a great candidate experience. Feel free to inform us of any accommodations you may need, so we can best support you throughout the hiring process.
do.BETTER - our diversity & inclusion strategy: https://corporate.zalando.com/en/our-impact/dobetter-our-diversity-and-i...
Our employee resource groups: https://corporate.zalando.com/en/our-impact/our-employee-resource-groups
WHAT WE’D LOVE YOU TO DO (AND LOVE DOING)Design, build, and integrate security practices and tools seamlessly into the software development lifecycle.
Automate security testing and compliance checks within CI/CD pipelines for efficient and consistent security enforcement.
Proactively identify, assess, and mitigate security risks and vulnerabilities in software related security issues.
Collaborate with development and like minded security teams to promote security awareness and best practices.
Respond to post-mortem security issues, implementing measures to prevent future occurrences.
WE'D LOVE TO MEET YOU IF…
You are proficient in coding and scripting languages like Python, Java, Javascript, Go, Bash, Ruby, etc.
You have a solid understanding of DevSecOps tools and practices.
You possess strong cybersecurity knowledge, including threat modeling and vulnerability assessment.
You have experience securing cloud environments and are familiar with cloud-native security tools.
You excel in problem-solving, analytical thinking, and have strong communication and collaboration skills.
OUR OFFER
Zalando provides a range of benefits, here’s an overview of what you can expect. Ask your Talent Acquisition Partner to learn more about what we offer.
Employee shares program;
40% off fashion and beauty products sold and shipped by Zalando, 30% off Zalando Lounge, discounts from external partners;
2 paid volunteering days a year;
Hybrid working model with up to 60% remote per week, actual practice is up to each team to best support their collaboration;
Work from abroad for up to 30 working days a year;
27 days of vacation a year (for Zalando SE);
Relocation assistance available (subject to prior agreement);
Family services, including counseling and support;
Health and wellbeing options (including Gympass);
Mental health support and coaching available.
