EIS is looking for Software Security Engineer.
EIS is an insurance software company that enables leading insurers to innovate and operate like a tech company: fast, simple, agile. Founded in 2008, EIS provides an open, flexible platform of core systems and digital solutions allowing insurers to accelerate and scale innovation, launch products faster, deliver new revenue channels, and create experiences the world will love. With thousands of APIs, the platform gives insurers the freedom to connect to a vast ecosystem of insurtech and emerging technologies. EIS powers premium growth for insurers in all lines of business worldwide. For more information visit EISGroup.com.
Software Security Engineer position will enable us to perform in-depth technical application security analysis, identify and help remediate vulnerabilities before Advanced Persistent Threats do. This is a hands-on technical AppSec-focused role requiring significant prior experience specifically in web AppSec.
We are looking for smart, dynamic and intuitive people to join our growing team of technology professionals and industry experts.
Implementing EIS Secure Software Development Process:
Performs code review and white-box testing of web applications and their APIs
Reviews software architectures for secure design issues, providing a design review service to project teams
Integrates Application Security automation solutions into DevOps pipeline
Implements static code analysis customizations
Develops and employs application-specific security testing automation
Responds to technical security challenges and questions faced within EIS RnD
Communicates nature and impact of identified application security deficiencies as well as their potential solutions
Provides training to other teams on software security, including information from OWASP framework
Possesses deep technical/functional expertise and knowledge in software security (OWASP ASVS and OTG, at a minimum)
Utilizes security tools, utilities and processes (Burp Suite Pro, advanced knowledge)
Deeply experienced in manual software security analysis
Experienced in JavaEE and its security model
Experienced in Python security automation
*The following skills would be a plus*:
Secure Software Architecture
Secure SDLC implementation experience
Cloud-native web application security
Docker and microservice security
Prior experience as a JavaEE developer
*What we offer*:
Variety of new knowledge sharing and training opportunities
Unique international working environment
Paid vacation and sick leave
Various social & team-building activities
If you are interested in a Software Security Engineer position please send us your CV and a cover letter highlighting your qualifications and reasons for your interest.
About EIS Group
EIS Group is a global innovator, providing the insurance industry with transformational platforms to enable their success. We are committed to delivering tools, digital enablement, and exploring emerging technologies that drive efficiency and empower clients to reimagine the possible.
Our culture is highly innovative, collaborative and focused on building and maintaining relationships that allow us to surpass our customers’ expectations. We embrace the qualities that make each of our team members unique and develop each other’s skillsets so that together we can be stronger than the sum of our parts.
DOU company page:
Job posted on
12 January 2021