• Assess information security risks in line with internal policy and external best practices • Support security of information and IT assets by testing security systems and applying security standards, policies, and procedures • Implement cyber security technology and provide day-to-day business support • Manage third-party providers to ensure internal or third-party adhere to standards • Provide information security training to appropriate teams

• Design and implement secure architecture across applications, cloud environments, and internal systems. • Lead threat modeling, security reviews, and vulnerability assessments across engineering projects. • Collaborate with product, platform, and DevOps teams to embed secure development practices (DevSecOps). • Develop custom tools, scripts, and automation for detection, hardening, and incident response. • Monitor evolving threats and advise on detection and mitigation strategies based on real-world TTPs. • Investigate complex security events and lead remediation efforts when necessary. • Mentor junior engineers and contribute to internal security training and process improvement.

Role Description We are looking for a highly skilled and experienced Application Security Consultant to strengthen our team. This role is instrumental in ensuring the integrity and security of our proxy services. The Application Security Consultant will be responsible for conducting in-depth security assessments of the product, including the analysis of its components, build processes, and distribution mechanisms. You will be expected to: - Investigate detection mechanisms used by external security solutions. - Engage with their vendors to resolve incidents. - Develop and implement measures to mitigate the risks of false classification. Qualifications - Deep understanding of how antivirus software works and various threat detection methods (signatures, heuristics, behavioral analysis, machine learning). - Proven experience in Application Security (AppSec), malware analysis, and reverse engineering. - Understanding of modern operating system architectures (Windows, Linux). - Experience interacting with antivirus vendors and engaging in the whitelisting/clearing process. - Ability to perform comprehensive analysis and identify root causes of issues. - Excellent communication skills, with the ability to clearly and logically present findings. Requirements - Conduct a detailed security analysis of our Proxy server and its installation processes. - Investigate detection mechanisms employed by antivirus software (specifically at the signature, heuristic, and behavioral analysis levels). - Collaborate with antivirus vendors to provide necessary information and dispute false positives. - Develop and implement recommendations for changes to the Proxy server's code, build processes, and distribution methods to minimize the risk of false positives in the future. - Assess our product's adherence to best practices in application security. - Provide training to the development team on secure development practices, as needed. Benefits - Competitive Compensation – Attractive salary package. - Flexible Work Environment – Fully remote work arrangement with flexible hours to balance personal and professional life. - Innovative Culture – Work in a collaborative, dynamic environment where your insights directly impact business outcomes. - Paid Time Off – Generous vacation policy, sick leave, and company holidays.

• Design and implement robust and efficient network architecture solutions on Palo Alto firewalls, F5 load balancers, Meraki, and Azure. • Maintain and update architecture documentation, including network diagrams, configurations, and procedures. • Create and distribute SOPs for core architecture. • Identify areas of opportunity to enhance processes and methodologies. • Collaborate with cross-functional teams to define project scope, objectives, and deliverables. • Participate in project planning sessions, daily stand-ups, and backlog meetings to track progress and address issues. • Perform other duties and special projects as assigned.