Security Engineer • Senior

Who you are

You have 5+ years of experience in application security, with a strong background in threat modeling and security reviews — you've successfully implemented security measures in software development lifecycles and understand the importance of embedding security from the start. Your hands-on technical expertise allows you to drive automation and vulnerability management processes effectively, ensuring that security is a priority for engineering teams.

You are proficient in using tools like Burp Suite and have a solid understanding of OWASP principles — your experience includes evaluating and implementing security tools that enhance the security posture of applications. You thrive in collaborative environments, partnering with both backend and frontend developers to promote secure coding practices and deployment strategies.

You are detail-oriented and have a knack for curating, triaging, and validating security findings — your ability to streamline automation workflows is a key asset in your role. You are passionate about empowering teams to adopt secure practices and are always looking for ways to improve existing processes.

Desirable

Experience with Docker and Kubernetes is a plus, as you understand the security implications of containerized applications. Familiarity with secure coding standards and practices will further enhance your contributions to the team.

What you'll do

As a Senior AppSec Engineer at Bitvavo, you will lead the charge in integrating security into the software development lifecycle — your role will involve conducting threat modeling sessions and security reviews to identify potential vulnerabilities early in the development process. You will drive the adoption of automated code scanning tools, ensuring that security checks are seamlessly integrated into CI/CD pipelines.

You will collaborate closely with engineering teams to enable secure coding practices, providing guidance and support as they build and deploy applications. Your expertise will help streamline vulnerability management processes, allowing teams to respond quickly to security findings and implement necessary fixes.

In addition, you will curate and validate findings from Software Composition Analysis (SCA) and Static Application Security Testing (SAST) tools, ensuring that security issues are addressed promptly and effectively. Your role will also involve evaluating new security tools and technologies, making recommendations that align with Bitvavo's security strategy.

What we offer

At Bitvavo, you will be part of a dynamic team that is at the forefront of the cryptocurrency exchange industry — we offer a collaborative work environment where your contributions will have a direct impact on the security of our platform. You will have opportunities for professional growth and development, as we encourage continuous learning and skill enhancement.

We provide competitive compensation and benefits, along with a flexible work environment that values work-life balance. Join us in making digital assets accessible for everyone while ensuring that security remains a top priority in our development processes.