Security Engineering Manager - Application Security (f/m/d) at Delivery Hero SE (Berlin, Germany)
Location: Berlin, Germany
Type: Full Time
Created: 2021-07-31 05:00:12
We are looking for a Security Engineering Manager- (Application Security) (f/m/d) to join our team and reinvent on-demand delivery with us. If you're a creative problem solver who is eager to deliver solutions and hungry for a new adventure, an international workplace is waiting for you in the heart of Berlin!
This position will be accountable for establishing and maintaining the Application Security Program for Delivery Hero. It involves scheduling penetration tests, Bug Bounty program, ensuring remediation of discovered vulnerabilities, Application security consultancy, extending security automation and more.
Lead and manage the Delivery hero Application Security team
Report to the Delivery Hero Director of global Security
Design, build and extend the Application security team locally and globally
Manage and maintain application security framework, standards, policies and guidelines
Enhance existing measurements and metrics to track and improve security posture
Align and embed Application Security processes into existing engineering teams globally
Develop and maintain application security management and resolution tracking systems
Align with our business units to ensure all key assets are covered
Your heroic skills:
Experience risk management, implementing, configuring, deploying, security tools for big companies in a fast changing environment
Previous experience working as information security manager
Understanding of People Centric Security
Familiarity with one or more cloud vendor services and management tools (AWS, GCP) and agile practices and processes (Scrum
You have ability to read and break code in languages such as Python, Java,Ruby, C/C++ and PHP
Working knowledge of common application and network security assessment tools and techniques
Experience with vulnerability management (identifying, tracking, prioritizing, and collaboration with responsible teams to resolve)
Knowledge of network and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
Extensive knowledge and ability to explain all vulnerabilities and weaknesses as defined in OWASP Top 10 and WASC
Fluency in English Strong oral, written and interpersonal communication skills
Strong leadership skills with the ability to work effectively within cross-team collaborations
Strong technical aptitude with a desire to learn new skills and industry trends
- Minimum 7 years experience in Information Application Security
Strong systems engineering background
Strong understanding of NIST and ISO frameworks
Certifications like OSCP, OSCE and CISM
Team player who can get along with others both inside and outside the company
Why Delivery Hero?
Exchange ideas and meet colleagues from different teams in our active guilds and through our global tech & product community.
We offer visa & relocation support globally to our permanent employees.
Enjoy our free online yoga classes and a subsidized Urban Sports Club or Gympass membership.
Take care of your mental and emotional well-being with our free Headspace subscription and unlimited access to our confidential Employee Assistance Program.
Participate in our health campaigns such as seasonal flu vaccines.
Benefit from subsidized products e.g. BVG ticket, meal vouchers, fruit or vegetable box or our bike rental program
We support child care needs where we partner with an external service to support tasks such as Kita search and application, Au Pair or childminder search
Join the global market leader and a publicly listed company with a competitive remuneration package.
Develop your skills with your personal educational budget for conferences and external trainings.
Access our e-learning platform MyAcademy and participate in our various in-house trainings, including German learning options.
Save responsibly with our attractive corporate pension options.
Join company parties, team, cultural and sports events - due to the current situation on a virtual basis.
And much more…
Have we caught your attention? If you are looking for an environment where our company DNA is defined by our values and People Leadership Principles, please send us your CV (& Cover Letter, Portfolio, etc.).
We’re looking forward to your application!