Security Engineering Manager - Application Security (f/m/d) at Delivery Hero SE (Berlin, Germany)

Security Engineering Manager - Application Security (f/m/d) at Delivery Hero SE (Berlin, Germany)


Add To Bookmarks
Company:
Location: Berlin, Germany
Type: Full Time
Created: 2021-07-31 05:00:12

Apply Here


We are looking for a Security Engineering Manager- (Application Security) (f/m/d) to join our team and reinvent on-demand delivery with us. If you're a creative problem solver who is eager to deliver solutions and hungry for a new adventure, an international workplace is waiting for you in the heart of Berlin!

This position will be accountable for establishing and maintaining the Application Security Program for Delivery Hero. It involves scheduling penetration tests, Bug Bounty program, ensuring remediation of discovered vulnerabilities, Application security consultancy, extending security automation and more.

Your mission:

  • Lead and manage the Delivery hero Application Security team

  • Report to the Delivery Hero Director of global Security

  • Design, build and extend the Application security team locally and globally

  • Manage and maintain application security framework, standards, policies and guidelines

  • Enhance existing measurements and metrics to track and improve security posture

  • Align and embed Application Security processes into existing engineering teams globally

  • Develop and maintain application security management and resolution tracking systems

  • Align with our business units to ensure all key assets are covered

Your heroic skills:

  • Experience risk management, implementing, configuring, deploying, security tools for big companies in a fast changing environment

  • Previous experience working as information security manager

  • Understanding of People Centric Security

  • Familiarity with one or more cloud vendor services and management tools (AWS, GCP) and agile practices and processes (Scrum

  • You have ability to read and break code in languages such as Python, Java,Ruby, C/C++ and PHP

  • Working knowledge of common application and network security assessment tools and techniques

  • Experience with vulnerability management (identifying, tracking, prioritizing, and collaboration with responsible teams to resolve)

  • Knowledge of network and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)

  • Extensive knowledge and ability to explain all vulnerabilities and weaknesses as defined in OWASP Top 10 and WASC

  • Fluency in English Strong oral, written and interpersonal communication skills

  • Strong leadership skills with the ability to work effectively within cross-team collaborations

  • Strong technical aptitude with a desire to learn new skills and industry trends

Required qualifications:

  • Minimum 7 years experience in Information Application Security
  • Strong systems engineering background

  • Strong understanding of NIST and ISO frameworks

  • Certifications like OSCP, OSCE and CISM

  • Team player who can get along with others both inside and outside the company

Why Delivery Hero?

  • Exchange ideas and meet colleagues from different teams in our active guilds and through our global tech & product community.

  • We offer visa & relocation support globally to our permanent employees.

  • Enjoy our free online yoga classes and a subsidized Urban Sports Club or Gympass membership.

  • Take care of your mental and emotional well-being with our free Headspace subscription and unlimited access to our confidential Employee Assistance Program.

  • Participate in our health campaigns such as seasonal flu vaccines.

  • Benefit from subsidized products e.g. BVG ticket, meal vouchers, fruit or vegetable box or our bike rental program

  • We support child care needs where we partner with an external service to support tasks such as Kita search and application, Au Pair or childminder search

  • Join the global market leader and a publicly listed company with a competitive remuneration package.

  • Develop your skills with your personal educational budget for conferences and external trainings.

  • Access our e-learning platform MyAcademy and participate in our various in-house trainings, including German learning options.

  • Save responsibly with our attractive corporate pension options.

  • Join company parties, team, cultural and sports events - due to the current situation on a virtual basis.

  • And much more…

Have we caught your attention? If you are looking for an environment where our company DNA is defined by our values and People Leadership Principles, please send us your CV (& Cover Letter, Portfolio, etc.).

We’re looking forward to your application!