ABInBev
  • Published: September 20, 2021
Category
Job Type
Level of education
High school
Spoken Language needed
English
Level of Hebrew
Medium
Location of job
Tel Aviv/ Ramat Gan
How many relevant years experience do you require for the role:
2 years

Description

AB InBev

We are the world’s leading brewer bringing people together for a better world. For centuries, the experience of sharing a beer has brought people and cultures together. Even in our hyper-connected, always-on world, this simple act is as meaningful today as it was generations ago.

We are AB InBev. Committed to driving growth that leads to better living for more people in more places. Through brands and experiences that bring people together. Through our dedication to brewing the best beer with the best ingredients. And through our commitment to helping farmers, retailers, entrepreneurs, and communities grow.

We are building a company to last. Not just for a decade. But for the next 100 years. Through our brands and our investment in communities, we will bring more people together, making our company an integral part of our consumers’ lives for generations to come.

At the heart of our dynamic global growth is a simple belief: nothing should come between incredibly talented people and an accelerated career. That’s why we dream big. Why we look to the future, not the past. Why we value talent over title. And why we hire people that can be better than ourselves. At AB InBev you’ll join a driven team that shares your desire to grow, your courage to challenge, and your commitment to act. In return, we’ll reward your achievements.

About the role

The application security engineer provides expert technical guidance to product security champions in performing the daily, weekly, and monthly security activities as part of our Secure SCRUM process.

The application security engineer performs validation of security controls during design, development, testing, and deployment of systems that support AB InBev’s products and services.

In this role, you’ll have the potential to transform our business and your career. We’re a meritocracy, with plenty of room for growth and development, so you know your hard work will be rewarded.

We encourage you to think big and go after your goals. You’ll get to be creative, work with international teams so you can build a global network, and have direct control over your career and where it takes you.

REQUIREMENTS

Your main duties

- Work with the global DevSecOps team, responsible for our SAST, SCA, and DAST tools to configure an efficient technology-specific scanning profile, perform rule finetuning to reduce the rate of false-positive and provide remediation assistance to application engineers.
- Support product owners in creating security user stories and security acceptance criteria.
- Assist product engineers to compose and execute attacker abuse cases.
- Perform design reviews, threat modeling, and source code review and drive remediation of the discovered vulnerabilities
- Support security assessments (penetration testing) on externally and internally facing applications.
- Proactively perform hands-on security testing of applications and services to discover risk and track to resolution.
- Understand, balance, and communicate business risk with a security risk.
- Perform research and maintain an extensive knowledge base of current security technology advancements, trends, and developments for retail industries
- Act to bring continuous improvement to DevSecOps processes and tools.

Requirements

- People with leadership, stakeholder and communication management skills
- Strong foundations in software engineering, software design and threat modeling
- Curious, ambitious and resilient people who thrive in fast-moving environments
- Open-minded individuals who are flexible and enjoy change
- Strategic thinkers who are always on the lookout for ways to improve and grow
- People as comfortable working in a team as they are on their own
- English speakers (additional language is a plus)
- Experience with Docker containers and Kubernetes
- Experience with multiple languages such as Java, Kotlin, Swift, .NET, Node.js, PHP and understanding of how to detect and remediate - security issues such as OWASP Top 10
- Security community participation (conference speaker, tool development contributor) is highly preferred
- Information security certification such as OSCP, OSWE, CSSLP, etc. is a great benefit
- Ability to travel up to 20%

Apply
(Check on your spam box)
Drop files here browse files ...

Related Jobs