Senior Info Sec Engineer

(Senior) Application Security Engineer - India Remote

Location: IN
Company: WIRmachenDRUCK

Do you enjoy working with the latest tech and rolling up your sleeves to help organizations achieve their goals in the cloud, on-premises and everywhere in between? If so, read on!

Who We Are
Cimpress is the world leader in mass customization. You’ve probably heard of our brands, including WIRmachenDRUCK, Vista, Printdeal, Druck.at, National Pen, Pixartprinting, Exaprint, Tradeprint, EasyFlyer, BuildaSign and others. WIRmachenDRUCK – as part of Cimpress - is looking for a (Senior) Application Security Engineer to support and coordinate our development teams in terms of application security as well help to continuously develop our Secure Software Development Lifecycle (SSDLC).

What You Will Do
As a (Senior) Application Security Engineer, you will provide the architectural expertise to ensure robust and resilient software. You will also have a critical role in ensuring we are providing the proper training, development frameworks, enabling our developers the freedom to experiment and take informed decisions when trying new things. We’re seeking someone passionate about software development and looking for opportunities to improve it.

Your Qualifications
At WIRmachenDRUCK, we value the experiences that individual team members add to our culture. Please don't hesitate to apply even if you don't meet the exact qualifications, we look forward to learning more about you!

1. Excellent verbal and written communication skills for presenting solutions and sharing knowledge.
2. 5+ years of experience as a software engineer & developer with hands-on experience in developing security measures in enterprise-level software products.
3. Coding & Software Development Experience:
   1. Develop flowcharts, layouts, and documentation to identify requirements and solutions.
   2. Develop/code well-designed & testable security features/functionalities into software.
   3. Integrate software security components into a fully functional software system.
   4. Troubleshoot, debug, and upgrade existing gaps in security features of the applications.
   5. Peer review code and handle issues.
   6. Identify and fix security vulnerabilities in code.
4. Security Practices and Implementation Experience:
   1. Develop, implement and enforce security policies, standards, and procedures within Development teams.
   2. Monitor, assess and respond to security incidents.
5. Security Testing, Assessment & Training:
   1. Analyze bug reports, security scans, and penetration tests & coordinate fixes.
   2. Participate in security design discussions.
   3. Conduct workshops and training on security for network, client, web app, wireless, and social engineering.
6. Technical Skills and Knowledge:
   1. Micro-service design, caching, and secure software design.
   2. Understanding of TCP/IP, HTTP, web security, and multi-tier web applications.
   3. Systems and application design, including trade-offs around performance.
   4. Experience with AWS, LAMP stack (Linux, Apache, MySQL, PHP), Node.js (MERN stack/MEAN stack).
   5. Experience with containerization and orchestration tools such as Docker and Kubernetes.
   6. Familiarity with CI/CD pipelines and related tools (Bitbucket CI).

Nice to Have

1. Broad awareness of security engineering concepts and practices across all phases of the software development lifecycle.
2. Knowledge of all kinds of security-related protocols and standards (TLS, OAUTH).
3. Knowledge of risk and security frameworks and standards (ISO 27001, NIST CSF, FAIR).
4. Familiarity with the tools for various security activities: SCA, SAST/DAST as well as best-practice documents like OWASP Top 20.

Why You'll Love Working Here
Being at WIRmachenDRUCK means that you don’t see work as just a building, a desk or a manufacturing floor. You see it as a chance to take a step forward in your career journey – and your life. We strive to give you everything you need to learn, grow, and succeed.

Through innovation, collaboration, and perpetual exposure to what’s next, we’re always pushing boundaries and broadening our horizons. We embrace the chance to operate outside of our comfort zone to discover what we’re capable of. Some might call that a challenge; we just call it another great day at work.

We're Remote-First
In 2020, WIRmachenDRUCK adopted a Remote-First operating model and culture. We heard from our team members that having the freedom, autonomy and trust in each other to work from home and the ability to operate when they are most productive, empowers them to be their best. WIRmachenDRUCK also provides collaboration spaces for team members to work physically together when it's safe to do so and when in-person collaboration will deliver the best results.

Equal Opportunity Employer
WIRmachenDRUCK, a Cimpress company, is an Equal Employment Opportunity Employer. All qualified candidates will receive consideration for employment without regard to race, color, sex, national or ethnic origin, nationality, age, religion, citizenship, disability, medical condition, sexual orientation, gender identity, gender presentation, legal or preferred name, marital status, pregnancy, family structure, veteran status or any other basis protected by human rights laws or regulations. This list is not exhaustive and, in fact, in many cases, we strive to do more than the law requires.