Senior Security Engineer

We think you also hate when travel app is giving you a headache, right? A slight misinformation can ruin the trip.

That is exactly what we are tackling as t-fam! Making sure that our 17+ million users have the best experience in crafting their own adventure.

Your main duties in flying with us:

  • Security Analysis and Incident Response:
  • Conduct thorough security assessments to identify vulnerabilities and potential threats.
  • Perform risk scoring based on OWASP Risk Rating and/or CVSS.
  • Investigate and respond to security incidents, ensuring timely and effective resolution.
  • Defensive Technologies:
  • Utilize and manage security defensive technologies such as SIEM, WAF, and Bot Management tools.
  • Implement and maintain security measures to protect the organization’s assets.
  • Programming and Technical Skills:
  • Apply programming skills to develop and implement security solutions.
  • Conduct regular code reviews to ensure security best practices are followed.
  • Communication and Presentation:
  • Prepare detailed reports on security assessments, incidents, and mitigation strategies.
  • Deliver clear and concise presentations to stakeholders on security findings and recommendations.
  • Nice to Have:
  • Experience with techniques, tactics, and mitigation strategies as outlined by MITRE ATT&CK.
  • Familiarity with fulfilling PCI DSS and ISO 27001 compliance requirements.
  • Relevant certifications such as GCIH or GMON.

Mandatory belongings that you must prepare:

  • Minimum of 4 years of experience in the field of cybersecurity.
  • Proven experience in programming and security vulnerability management.
  • Ability to perform risk scoring and assessments using OWASP Risk Rating and/or CVSS.
  • Hands-on experience with security defensive technologies.
  • Strong written and verbal communication and presentation skills.
  • Demonstrated experience in security incident response and investigation.