AppSec - Security Tests & Analysis Engineer

See more jobs from Trendyol Group

almost 3 years old

Apply Now

Ready to learn more about us?
We were founded in 2010 with a dynamic and agile start-up spirit. The trust of around 30 million customers and 250,000 sellers has made us the first decacorn in Turkey. Our success is backed by renowned investors such as Alibaba, General Atlantic, Softbank, Princeville Capital and several sovereign wealth funds. In 2022, we opened our first dedicated international office in Berlin and expanded to Amsterdam, Luxembourg and London. And that's just the beginning!

Tech at the root
We believe that technology is the driver and e-commerce is the outcome. Thanks to the dedication of our team, we have become one of the top 5 e-commerce companies in EMEA and one of the fastest growing worldwide. We currently deliver over 1.5 million parcels daily to 27 countries.

Growth is in our DNA
As a young and dynamic company, we are constantly growing and expanding. With Trendyol Tech, one of the leading R&D centres, Trendyol Express, the fastest growing delivery network, Dolap, the largest platform for second-hand goods, and Trendyol Go, our instant food and grocery delivery service, we are gearing up to become the world's leading e-commerce platform.

Focused on positive impact
Our vision goes beyond business success. We strive to make a sustainable and positive impact on our customers, business partners, and society. By digitizing merchants and SMEs, helping businesses grow, and promoting women's economic empowerment, we are dedicated to creating a better future.

ABOUT THE TEAM
If you are a techie, you belong in our Technology Team that builds scalable, high-performance platforms for our customers using up-to-date and efficient technologies.

We are all working with the same purpose: To create a positive impact in our ecosystem by enabling commerce through technology.

Your Main Responsibilities

  • Perform manual source code and audits (manual and SCA/SAST code audits) and/or any needed security research on the product suites undergoing assessment
  • Be a subject matter expert and guidance to Trendyol Engineering for secure coding practices, application security testing, mobile platform security and all aspects of application and product security
  • Performing at least one of the following tests: Products/Projects Security Testing (Web/Mobile/Desktop), Platform Security Test, Supply Chain Security Test
  • Determine threat models, perform risk analysis of any product changes that may impact security
  • Developing custom security tools
  • You understand SDLC within an agile framework
  • Promoting security best practices among developers
  • Community contributions like public CVEs, bug bounty recognition, open-source tools, blogs, presentations, etc will be bonus points.
  • Qualities We Are Looking For

  • Minimum 2+ years of experience in related positions
  • Stays current with the latest threats and vulnerabilities
  • Experience with multiple programming languages (such as, Java, goLang, Objective C, Swift, Kotlin, etc.)
  • Bonus points for community contributions like public CVEs, bug bounty recognition, open-source tools, blogs, etc
  • Having excellent communication skills
  • Experience with vulnerability management and enterprise remediation efforts
  • Being an Agile minded team player
  • Eagerness on self-improvement, open-minded, future-oriented
  • Good command of both written and spoken English
  • JOIN US AND
    * Take responsibility from day one and develop your skills with a talented and diverse international team.
    * Experience open communication, flexibility, and a start-up spirit in our unique culture.
    * Tackle big challenges in e-commerce with Agile practices and encourage growth by learning from mistakes.
    * Join creative and focused teams that prioritize collaboration and problem-solving.
    * Access our extensive training platform for continuous learning and personal growth.
    * Benefit from the support of a global team of experts with mentoring and professional development opportunities.
    * Focus on talent and potential, not just job titles.
    * Connect with teammates regardless of physical distance through events, meetings, and social activities.
    * Enjoy competitive benefits such as Trendyol shopping budget, central and international office locations, and top-of-the-line technical equipment.


    We're looking forward to receiving your application!

    We offer a hybrid model that combines the productivity of remote work with the bonding and collaboration of in-office work. Teams are expected to work from our offices on designated days each week, fostering team spirit, creativity and cross team collaboration as part of our culture.

    We also provide a summer working model, with a two-month fully remote work opportunity during July and  August.

    The hybrid working model only applies to hybrid roles; on-site roles require regular office presence.


    Discover more about our #LifeatTrendyol and our culture on our WebsiteLinkedIn and YouTube channels.

    At Trendyol, we believe in the power of an inclusive workplace. We value diversity and believe that every team member contributes to our vibrant culture. Our platform is for everyone, and so is our workplace. We encourage the representation and amplification of diverse voices in our business, as it allows us all to thrive, contribute, and shape the future together.