Remotery

Senior Security Engineer

Posted Jun 9

This is a fully remote position, open to applicants in United Kingdom.

📋 Description

• You will play a crucial role in securing Prolific’s applications from end to end, engaging in hands-on testing, code reviews, threat modeling, and CI/CD security.

• Collaborating closely with engineers, you will identify and rectify vulnerabilities, develop and optimize security tools, and integrate secure development practices throughout the software development lifecycle (SDLC).

• Your responsibilities will include conducting penetration tests, enhancing detection coverage, and proactively addressing emerging threats to continuously bolster our security posture.


⛳️ Requirements

• A few years of experience in application/product security along with a background in software engineering.

• In-depth understanding of the OWASP Top 10 (Web & API) and contemporary attack vectors (such as authentication flaws, SSRF, injection, business logic abuse, and supply chain vulnerabilities).

• Proven experience with complex, large-scale systems and modern architectures.

• Hands-on experience in security testing, particularly with Burp Suite, across web applications and APIs.

• Proficiency in Python for developing security tools, automation, or custom detection (experience with Django is a plus).

• Familiarity with implementing and fine-tuning SAST, SCA, DAST, and secret scanning within CI/CD environments.

• Practical experience in threat modeling, including leading concise sessions.

• Strong collaboration skills with the ability to clearly communicate issues and drive remediation efforts.

• A builder mindset, with a focus on automation wherever feasible.

• Experience with Django, Vue.js, MongoDB, and Google Cloud Platform (GCP).

• Involvement in security champions or bug bounty programs.

• Knowledge of supply chain security (including SCA, SBOMs, and dependency reviews).

• Familiarity with Infrastructure as Code (IaC) security (for example, Terraform and policy-as-code).

• Possession of hands-on certifications (such as OSCP, GWAPT, or BSCP).

• Experience in scaling environments while establishing security practices.


🏝️ Benefits

• Competitive salary.

• A variety of benefits, perks, and additional compensation options.

People also viewed

DATAGROUP33 sec ago

Backoffice Information Security Associate – all genders

DE flagGermany OnlyFull-timeCybersecurity / Security Engineer
ApplyView job
CrowdStrike33 sec ago

Security Advisor I – Falcon Complete GovCloud

US flagUnited States OnlyFull-timeCybersecurity / Security Engineer$85k – $120k/year
ApplyView job
GitLab33 sec ago

Senior Manager, Security Compliance

US flagUnited States OnlyFull-timeCybersecurity / Security Engineer$168k – $245k/year
ApplyView job
CrowdStrike33 sec ago

Engineer III, Software Assurance – Product Security

US flagUnited States OnlyFull-timeCybersecurity / Security Engineer$120k – $180k/year
ApplyView job
Johnson Controls33 sec ago

Senior Strategic Account Manager, Data Center – Security

US flagCalifornia, +3 more statesFull-timeCybersecurity / Security Engineer$100k – $150k/year
ApplyView job
Westernacher Consulting33 sec ago

SAP Security Consultant

IN flagIndia OnlyFull-timeCybersecurity / Security Engineer
ApplyView job

Never miss a great job!

Get handpicked remote jobs straight to your inbox weekly.

Trusted by 7,400+ designers