Junior/Middle Application Security Engineer

Veeam, the #1 global market leader in data protection and ransomware recovery, is on a mission to empower every organization to not just bounce back from a data outage or loss but bounce forward.

With Veeam, organizations achieve radical resilience through data security, data recovery, and data freedom for their hybrid cloud.

The Veeam Data Platform delivers a single solution for cloud, virtual, physical, SaaS, and Kubernetes environments that gives IT and security leaders peace of mind that their apps

and data are protected and always available.

Headquartered in Seattle with offices in more than 30 countries, Veeam protects over 450,000 customers worldwide, including 74% of the Global 2000, who trust Veeam to keep their businesses running.

Veeam Quality Assurance team invites you to work on Veeam products with Veeam QA professionals in the Berlin R&D office.

Your tasks will include:

• Conduct regular security assessments, vulnerability scanning, and penetration testing of Veeam products and services
• Work with development teams to integrate secure development practices into the software development lifecycle
• Collaborate on the design and implementation of security within Veeam products
• Threat modeling and design reviews for new and existing Veeam products
• Conducting manual source code security audits
• Using automated application-analysis tools
  
  

What we expect from you:

• Ability to read source code on programming languages (such as C/C++/C#/JavaScript)
• A good understanding of the principles of secure software development
• A desire to develop in the field of application security
• A lively and flexible mind, clear logic, and analytical skills
• The desire and ability to work as part of a team
• Good verbal and written communication skills in English
  
  

Will be an advantage:

• Knowledge of scripting languages (Python, PowerShell, Bash, Ruby, etc.)
• Knowledge of modern cryptographic algorithms
• Experience with DAST and SAST tools
• Skills using OWASP ZAP, Burp Suite, Kali Linux tools
• Certifications such as OSCP, CEH, CSSLP, CCSP, AWS Certified Security, etc.
• Familiarity with cloud platforms (such as AWS/Azure/GCP)
• Experience playing CTF
• Experience with HackTheBox
• Experience with bug bounty hunting
  
  

We offer:

• Statutory Benefits – including Pension Scheme, Healthcare, Occupational Accident Insurance, Unemployment Cover
• Supplementary Company Pension Plan with Allianz
• Supplementary Group Accident Insurance with Allianz
• Annual Leave Entitlement – 30 days
• Veeam Care Days – additional 24 hours for your volunteering activities
• Professional training and education, including courses and workshops, internal meetups, and unlimited access to our online learning platforms (Percipio, Athena, O’Reilly) and mentoring through our MentorLab program
  
  

Please note: If the applicant is permanently present outside of Germany, Veeam reserves the right to refuse to consider the application for a job. Remote job is only possible in case the employee is located in Germany.

Veeam Software is an equal opportunity employer and does not tolerate discrimination in any form on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state or local law. All your information will be kept confidential.

Please note that any personal data collected from you during the recruitment process will be processed in accordance with our Recruiting Privacy Notice.

The Privacy Notice sets out the basis on which the personal data collected from you, or that you provide to us, will be processed by us in connection with our recruitment processes.

By applying for this position, you consent to the processing of your personal data in accordance with our Recruiting Privacy Notice.