HelloFresh

Senior Application Security Engineer

HelloFresh$122K — $141K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 4-7 years' experience in offensive security including Network, Wireless, Cloud, Web, Mobile, and API Assessments
  • Thorough understanding of network protocols, client-server models, and application security flaws
  • Proficiency in a modern scripting language like Python or Go
  • Relevant application penetration testing certifications (e.g., OSWE, GWAPT)
  • Participation in web hacking challenges or bug bounties
  • Ability to develop tools or plugins for security testing
  • Experience in source code reviews and vulnerability identification.

Responsibilities

  • Perform network/cloud penetration and application testing across web, mobile, and APIs
  • Develop comprehensive reports for both technical and executive teams
  • Communicate findings effectively to stakeholders including technical staff and legal counsel
  • Manage projects by planning, tracking, and reporting during remediation phases
  • Utilize attacker tools and tactics for vulnerability analysis
  • Create scripts or tools to enhance the Vulnerability Management Program.

Benefits

  • 75% discount on HelloFresh and Chefs Plate meal kits and 50% off Factor meal boxes
  • Health & Dental benefits from day 1, along with a Health Spending Account
  • Generous vacation and PTO policy for work-life balance
  • Parental leave top-up program for expectant parents
  • Support for career growth through learning and development initiatives
  • Opportunity for team socials and engaging company activities
  • Commitment to diversity, equity, and inclusion through employee resource groups
  • Flexible Hybrid working arrangement, with remote work options available.
Full Job Description
Lettuce share what this role will be responsible for
  • Perform network/cloud penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences
  • Effectively communicate findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel
  • Use formal project management skills in planning, tracking, and reporting to close the remediation loop
  • Recognize and safely utilize attacker tools, tactics, and procedures used to perform analysis and identify vulnerabilities
  • Develop scripts, tools, or methodologies to improve HelloFresh's Vulnerability Management Program

Sound a-peeling? Here's what we're looking for
  • 4-7 years' experience demonstrating above average ability in any 4 of the following areas of offensive security: Network, Wireless, Cloud, Web, Mobile, API Assessments, Source Code Review, Red Teaming, Social Engineering
  • Thorough understanding of network protocols, data on the wire, client-server model, application design and architecture, and different classes of application security flaws
  • Proven proficiency in one modern scripting language like Python or Go
  • Relevant application penetration testing certifications such as Offensive Security Web Expert (OSWE) certification, GIAC Web Application Penetration Tester (GWAPT), or equivalent mobile/web certification
  • Participation in web hacking challenges, competitions or bug bounties
  • Development of tools or plugins used to conduct security testing and analysis
  • Developing, extending, or modifying exploits, shellcode or exploit tools
  • Source code review for control flow and security flaws
  • Strong knowledge of tools used for cloud, wireless, web application, and network security testing

Let's cut to the cheese, this is why you'll love it here
  • Box Discount - Amazing discounts on 1 box per week! 75% discount on weekly HelloFresh and Chefs Plate meal kits AND 50% off weekly Factor meal box.
  • Health & Wellness - Health & Dental benefits from day 1, a Health Spending Account, unlimited access to the Headspace app to meet your self-care needs, and 25% discount on GoodLife fitness memberships!
  • Vacation & PTO - Time off is also an important part of self-care! We offer generous vacation and PTO to help you create a good work-life balance.
  • Family Benefits - A parental leave top-up program for expectant parents.
  • Growth & Development - We support your career progression and invest in your continued learning through experiences and initiatives owned by our dedicated L&D team
  • Work Hard & Have Fun - From team socials to engaging company days, you'll have plenty of opportunity to experience the fun!
  • Diversity & Inclusion Initiatives - With impactful ERG's like FreshPride, Women Empowered and LIMES, we are committed to our diversity, equity & inclusion efforts.
  • Food Puns - this one is kind of a big dill if you haven't already noticed. We even have some punny meeting room names!

Flexible Hybrid Approach

At HelloFresh, we know that flexible work arrangements are essential in enabling you to do your best work, while balancing your personal and life needs. Offering remote work flexibility, along with the opportunity to interact and collaborate in the office are all a part of creating a great employee experience.

To meet these needs, we are pleased to provide Flexible Hybrid work. Flexible Hybrid is a people-first approach that is based on choice, trust, personalization, and empowers teams to choose when and how often they work from the office and work from home, in addition to team days and company days. This means a minimum of 2 days in office per week, with most teams in office between 2-3 days a week.

#LI-HYBRID

HelloFresh Canada uses AI-integrated technology to help us process and evaluate applications more efficiently. This includes tools that screen and assess candidate qualifications based on the requirements for this role. While these tools assist our workflow, all final selection decisions are made by our hiring team.

This is a posting for an existing vacancy. We are actively seeking to fill this position.

Toronto, ON Pay Range

$122,740-$141,950 CAD

About HelloFresh

HelloFresh SE is a German publicly traded meal-kit company based in Berlin, Germany. It is the largest meal-kit provider in the United States, and also has operations in Canada, Western Europe (including the United Kingdom, Germany, Belgium, Luxembourg, the Netherlands, and Switzerland), New Zealand and Australia. The company was founded in November 2011 in Berlin, Germany by Dominik Richter, Thomas Griesel, and Jessica Nilsson. HelloFresh delivers pre-measured ingredients and recipes to their customers, allowing them to cook meals at home. The company went public in November 2017 and is listed on the Frankfurt Stock Exchange.
Learn more about HelloFresh
Size
18,700 employees
Industry
Founded
2011

Similar Jobs

More Jobs at HelloFresh

More Information Technology Jobs

Find similar Senior Application Security Engineer jobs: