Application Security Engineer (short-term project) in Evolvice GmbH

Evolvice isaGerman nearshore service provider with branches inUkraine, Portugal and Egypt. Founded in2012, Evolvice has astrong technical background and business domain knowledge, combining software engineering and Agile methodology, leading its’ clients’ path todigital transformation. Headquartered inthe heart ofthe automobile industry, Stuttgart (Germany), our expertise stretches from automotive, healthcare, travel, financial, governmental, and insurance tomanufacturing industries.Our team isover 100 people including web (C#/.NET, Java, JS) &mobile (iOS/Android/Ionic) developers together with business analysts, project managers, QA, and support staff. Our corporate culture ischaracterized byagile processes, autonomous teams without hierarchies, aswell asopenness and transparency— both internally and with our clients. Currently, weare searching Application Security Engineer tojoin the big team ofprofessionals for long-term cooperation.The customer isafully licensed Swiss bank under the regulation ofthe FINMA. The trading platforms give you access toinvest inglobal financial markets. Requirements: Familiarity with Flutter and Dart ishighly desirableProven experience inapplication security, particularly within the banking orfinancial services industry.Strong understanding ofweb and mobile application security principles, including OAuth, JWTs, and Auth0.Experience with CI/CD tools and practices, specifically within GitHub environments, and understanding ofhow tomanage secrets securely.Knowledge ofsecure cache storage mechanisms onmobile devices.Ability toconduct comprehensive security assessments and penetration testing.Excellent problem-solving skills and attention todetail.Strong communication and collaboration skills. Education: Bachelor’s degree inComputer Science, Information Security, orarelated field.Relevant security certifications (e.g., CISSP, CEH, OSCP) are advantageous. Responsibilities: Implement and maintain security measures toprotect web and mobile applications.Understand and apply Auth0 for authentication and authorization purposes.Provide training and guidance tothe development team onsecurity best practices.Design and implement strategies for secure cache storage onmobile devices.Conduct penetration tests and security audits toidentify vulnerabilities inexisting applications ifneeded.Collaborate with the development team toensure secure coding practices are followed.Stay updated with the latest security threats and countermeasures.Contribute tothe development ofsecurity policies and procedures. Weoffer:Financial stability, The account isonsupport.Interesting and challenging projects within professional self-managed teams.Friendly team and acomfortable working environment.Flexible schedule (8 —11AMstart) with apossibility towork assigned hours and/or adjust work schedule asrequested bythe manager.