Application Security Engineer

  • Madrid, Spain
  • Full-time

Company Description

Hi, we’re Nexthink. We’re not just the leader in the digital employee experience category, we invented the category. Our solutions combine real-time analytics, automation and employee feedback across all endpoints to help IT teams delight people at work. Our cloud-native platform pinpoints issues and solutions, automates response, and helps companies continuously improve their employees’ experience, making them more productive, efficient, and happy at work. We have millions of endpoints deployed, we’ve surpassed $100M in ARR, and we’ve recently secured $180M in Series D financing for a company valuation of $1.1B, but we’re just getting started. 

Job Description

Participate to design, implement and operate the application security strategy of Nexthink by:

  • Identifying security issues and risks, and develop mitigation plans
  • Reviewing the architecture, design and development plans to ensure they comply with industry security standards
  • Implementing security policies and techniques to ensure the whole product stack, from the application down to the operating system complies with industry security standards
  • Evaluating and recommending new and emerging security products and technologies

Participate to design, implement and operate the DevSecOps by:

  • Educating developers and DevOps Engineers around the plan, policies and best practices
  • Supporting DevOps on building security automation and achieve scalability
  • Developing metrics for performance and risk monitoring
  • Staying up to date with the industry practices, tools and market trends
  • Providing support for incident handling related to the application

Qualifications

  • Bachelor’s degree in Computer Science, Computer Engineering or related field, or 5+ years relevant work experience
  • 5+ years experience in Application-level vulnerability testing and auditing and Application security
  • 3+ years of experience and involvement with development team(s) that delivered commercial software or software-based services (development, QA testing, or security role)
  • You have excellent written and verbal communication skills and enjoy speaking with developers and other technology stakeholders to advocate for security best practices and provide technical guidance on the risk of vulnerabilities or misconfigurations
  • Experience with the application of threat modeling or other risk identification techniques
  • Development experience in Java, C++
  • Experience with scripting languages (e.g. python, ruby, bash)
  • Experience in Linux OS hardening (CentOS, RedHat preferred)
  • Hacking mindset. You make finding bugs/exploits your mission. 
  • Analytical mind, flexible mindset, and result oriented 
  • Strong problem-solving skills
  •  At ease in an Agile environment
  • Ability to work in a dynamic, flexible and collaborative team
  • Fluent speaking and writing in English and Spanish

Additional Information

We are 800+ employees strong in 21 countries across 8 different time zones speaking 60+ languages. We are positive, we get things done, we keep growing, and we are one team, we are Nexthink. We believe actions are stronger than words when it comes to diversity, inclusion, and equity in the workplace. Nexthinkers are multinational and multilingual, and come from all walks of life. We are committed to hiring a genuinely representative workforce that can create solutions and foster innovation for the modern digital employee experience.

Privacy Policy