We are looking for a diligent Application Security Engineer to protect the confidentiality, integrity, and availability of our Customer's information systems.
In this role, you'll leverage a variety of security tools and technologies to fortify applications and gaming systems against cyber threats. Ideal candidates are those who proactively stay ahead of security challenges and have a zealous interest in safeguarding digital assets.
The remote option applies only to the Candidates who will be working from any location in Ukraine.

#LI-DNI

Responsibilities

• Conduct application security assessments for both internal and external applications, while also defining and updating our application security methodologies
• Maintain and update secure coding best practices, assisting with static and dynamic code analysis
• Design, create, test, document, deploy, and maintain new automation, capabilities, and security services for the InfoSec team
• Stay informed of the security posture of Customer's applications
• Define and deliver InfoSec training on web-based exploits/tools and corresponding mitigation techniques
• Collaborate with cross-functional team members to devise complex security solutions

• 2+ years of experience in Information Security principles, technology, and control processes
• Background in development using Python, C++ or Golang/Rust
• Proficiency in application security, code review, DAST and SAST
• Experience with Secure Coding and familiarity with AppSec frameworks such as OWASP Guide, and SANS CWE Top 25
• Practical experience in implementing secure SDLC practices
• Solid understanding of DevOps principles including Docker container security and Kubernetes
• Experience setting up services on AWS infrastructure and conducting threat modeling
• Competency to apply security testing methodologies aligned with OWASP Top 10
• Understanding of algorithms, data structures, object-oriented design, and databases
• Holders of CEH, OSCP, GPEN, or GWAPT certifications
• Excellent communication skills and capability to produce detailed reports and technical documentation
• Fluency in English with an Upper-Intermediate level

• Familiarity with Java
• Experience in CI/CD systems or skills in working with Terraform

• Work on a flexible schedule remotely or from any of our comfortable offices or coworking spaces in Ukraine
• Receive the necessary equipment to perform your work tasks
• Change projects and technology stacks within EPAM
• Gain experience in various business domains (Insurance, E-commerce, Healthcare, Finance, Travelling, Media, Artificial Intelligence, and more)
• Consider relocation options in over 30 countries worldwide
• Participate in volunteer, charity programs and communities (both technical and interest-based)
• You can plan your individual career path together with your manager
• Receive regular feedback from colleagues
• Improve your English for free with certified teachers (Speaking Clubs, client interview preparation courses, etc.)
• Get the opportunity to undergo free training and certification in AWS, GCP, or Azure Clouds
• Use the internal E-learn training program (18,200+ specialized training and mentoring programs)
• Access corporate accounts on LinkedIn Learning, Get Abstract and other partner resources
• Study at EPAM Solution Architecture School with the instructors who are practicing architects
• Develop as a leader, join Delivery Management, Resource Management, Leadership Essentials school and more
• Participate in internal communities (500+ meetups, technical discussions, brainstorming sessions, online events and conferences annually)
• Vacation and sick leave (including a sick leave without a medical certificate)
• A wide range of Voluntary Medical Insurance programs providing both medical treatment and various preventive options (including sports activities)
• Medical insurance for family members at corporate rates
• Company support during significant life events (childbirth or adoption, marriage, etc.)
• Support for psychological comfort: discounts on services from mental health specialists or coaches, thematic training
• E-kids program - a free programming language training program for EPAMers' children