A great fit
You are a great fit for the position if you thrive ensuring that all of your software and infrastructure is designed and implemented with best security practices in mind and enjoy working with others to help them build a safer, stronger platform

You will work side by side with some of the most talented engineers in the industry to harden our systems and applications to better protect our customers’ data.

Usage of Tradeshift is growing. A lot. Which is expected - because we are creating the largest business network in the world. We handle data that our customers care about. A lot. Which means that we care about it. A lot. We are constantly developing more functionality and growing our engineering organisation. In other words? You will have your plate full of interesting tasks in a very dynamic environment. We are a SaaS platform hosted on AWS using mostly JVM based services running on Linux and Docker with automated build, configuration and deployment pipelines in place.

What you'll be working on in the first 6 months:

• Perform design and implementation security reviews for different parts of the Tradeshift platform
• Build technical solutions to address security weaknesses and work with relevant stakeholders to implement them
• Propose and evaluate innovative new security features that could benefit our users
• Assist with security incident response as needed
• Be a security evangelist within Tradeshift
• Find security flaws hidden deeply in complex protocols and systems across the software stack
• Design, evangelize and implement security process controls to improve Tradeshift's ability to detect, analyze and prevent malicious activity.

Experience and skills:

• Expertise in conducting server side, web and mobile security assessments covering threat modeling, design reviews and in-depth implementation audits
• Solid foundation in web security, penetration testing and cryptography
• Demonstrated proficiency in Java development
• Ability to harden and secure a Linux based infrastructure
• Great communication skills to help build a strong security culture
• Proficiency in implementing sandboxing solutions
• Familiarity with securing cloud based applications, AWS in particular
• Experience working to secure sensitive data
• BS(+) in Computer Science or a related technical field / equivalent experience
• 5+ years of industry experience engineering web facing systems - and thinking about security

What we offer:

• Ambitious international startup 
• Career and professional development opportunities
• Flexible hours
• Fully paid mobile phone and at home internet
• Lunch and snacks cooked in-house daily
• A competitive compensation package + equity
• Wellness program including in-house activities like yoga
• Volunteer program
• Fun company events like happy hours, hackathons, darts night, LAN parties, outings and more