RocketHuntSmart job search
350,000 – 400,000 RUB
per month
Reach out directly about this role
By country
Full-time
Employment
Senior
Grade
Cybersecurity
Specialization
Logistics
Industry
Agency
Company Type
Seeking AppSec Engineer (Middle+/Senior) in Telecom/Delivery | TopSelection Company
Hello! We are looking for NOT a DevSecOps engineer (setting up CI/CD and SAST scanners is not your role). We need a battle-hardened auditor who lives and breathes code and vulnerabilities.
Conditions: 📍 Citizenship and Location — Russian Federation (work from one year and beyond) 💸 Salary: 350,000 – 400,000 ₽ (gross, negotiable for top experts) 📃 Employment: contract with an individual entrepreneur
What you will be doing: 🛡 Manual code audit (Code Review for vulnerabilities) 🔍 Internal application pentests + work with Burp 📊 Triage of SAST/DAST/SCA results (filtering False Positives) 🏗 Architectural reviews and Threat Modeling 🤝 Interaction with development teams (to get vulnerabilities fixed)
Your profile: ✅ OWASP Top 10, Secure SDLC, Secure by Design ✅ Experience in manual vulnerability discovery (not just "clicked the scanner button") ✅ Deep understanding of code (to the level of pointing out logic errors to a developer) ✅ Burp Suite and dynamic analysis (DAST) — mandatory
Will be a plus: experience as a Security Champion, building AppSec processes from scratch, certifications. 🚫 Important: If your main expertise is configuring Jenkins/integrating tools without in-depth analysis of results, we unfortunately cannot proceed.
How to apply: ✍️ Write to Telegram AllaDemHR with the subject AppSec Engineer