Must have

• Web security

• OWASP

• SDLC

• Cloud

• English (C1)

Nice to have

• SIEM

Requirements description

• 2+ years of experience in security-related roles and 5+ years of software engineering or DevOps background
• Hands-on experience with Web security, OWASP/ASVS
• Strong knowledge of security fundamentals and best practices
• Knowledge of SDLC
• Knowledge of cloud environments
• Proactive approach to finding solutions and improvements
• High level of self-organization, independent thinking and ability to make your own decisions
• Team player attitude and strong collaborative communications skills
• Adaptability, agile mindset and ability to learn fast
• Advanced English

IT WOULD BE NICE IF YOU ALSO HAVE

• Knowledge of SIEM

‍

Offer description

At Justpoint, we use technology to protect health and secure justice. By using millions of medical data points, we discover toxic substances, harmful pharmaceuticals, or unsafe products and events causing harm and then act to prevent further injuries and compensate thousands of harmed individuals.

We are a remote-first startup, with talented team members spanning across four continents. By combining backgrounds of top-tier tech companies, venture capital firms, innovative tech startups, and industry-leading hospitals, we bring together diverse expertise to achieve our mission: preventing unnecessary diseases, disabilities, and deaths.

About our team

We are a skilled and supportive team striving to make a real impact through our work. Our culture is based on transparency, honesty and mutual respect, and we are comfortable giving and receiving feedback to help each other grow. We also love learning together, whether it’s through work challenges or initiatives.

Your responsibilities

1. Be responsible for application security - reviewing applications’ code (Go, Python), performing internal penetration testing, and introducing good practices according to SDLC
2. Help us build an internal SIEM solution
3. Work with DevOps and IT to develop security policies
4. Prepare and help with the delivery of security trainings
5. Take care of bug bounty program
6. Participate in threat modeling

show all (7)