Max Bet is a part of Flutter Entertainment and a rapidly growing company based in Serbia that specializes in sports betting, gaming, and gambling. We are dedicated to setting new standards in the industry and providing the best gaming and entertainment conditions for our customers. Our powerful network of gaming locations ensures our availability and accessibility to players. We prioritize our employees and foster a strong team spirit through communication and mutual understanding. We are constantly growing and now we are looking for an:
Application Security Engineer
Role Description:
This is a full-time hybrid role at Max Bet. As an Application Security Engineer, your day-to-day tasks will include ensuring application security and defining and implementing cybersecurity measures. You will be involved in software development projects and the security of solutions we create, integrate, or use. This role is located in Novi Sad or Belgrade with flexibility for some remote work.
Zahtevi
Mandatory Skill-set:
- Bachelor's degree in Computer Science or a related field required.
- At least 3 years of work experience in the area of application security.
- Experience in conducting secure code reviews, dynamic application security testing, and manual security testing for both Web and Mobile applications.
- Experience in threat modeling – able to prepare threat profiles to identify, quantify, and address security risks.
- Familiar with CI/CD and DevOps concepts and how security testing can be integrated and automated as part of software delivery pipelines.
- Familiar with secure Web Services and API architecture (such as REST, SOAP, SSL/TLS, HTTPS).
- Familiar with common Web and Mobile application vulnerabilities and possess the technical knowledge to address and mitigate vulnerabilities.
- Knowledge of security best practices, secure coding practice guidelines, and OWASP top 10 for web and mobile.
- Excellent communication and presentation skills.
Desired Skill-set:
- Knowledge of Static Application Security Testing (SAST) tools like Fortify, Checkmarx, Burp Suite Professional, Qualys, WebInspect.
- Knowledge in implementing open-source scanning tools like Sonatype, Blackduck.
- Knowledge in Container security implementation.
- Knowledge in Cloud Security (such as AWS, Google Cloud Platform).
- Experience handling Bug Bounty Programs and issue tracking.
- Industrial certifications such as CISSP or CEH.
- Strong communication and collaboration abilities.
Pogodnosti
We offer:
- Dynamic and stimulating work environment.
- Opportunities for professional development and advancement.
- Paid memberships in sports facilities.
- Voluntary health insurance.
- Work in a team that motivates and shares all knowledge.
Beograd, Novi Sad, Remote 
Full time 
24.05.2024.