Staff Security Engineer

We are looking for a highly talented Staff Security Engineer to join our team in Riyadh. If you are eager to gain hands-on experience and make a direct impact, this may be the perfect opportunity for you!

Location: Riyadh, Riyadh, Saudi Arabia
Work Conditions: On-site, Temporary

Key Responsibilities:

• Application Security:

  • Ensure implementation of defined secure coding standards.
  • Perform manual code/architecture reviews.
  • Implement and embed security modules/engines in CI/CD pipelines.
  • Collaborate with engineers to resolve identified security vulnerabilities.

• Penetration Testing and Red Teaming:

  • Conduct white/black box Vulnerability Assessments and Penetration Tests (VAPTs) for web and mobile applications, as well as on-prem/cloud infrastructure.
  • Conduct advanced red teaming exercises.
  • Submit detailed security assessment reports and follow up on mitigation action plans.

• Cloud Security:

  • Implement and maintain required security tools.
  • Enhance cloud infrastructure security to manage external and internal threats.
  • Improve security monitoring of cloud infrastructure.

• Governance and Resilience:

  • Adhere to relevant policies, procedures, and processes for controlled and consistent daily operations.
  • Identify opportunities for continuous process improvement, cost-effectiveness, and productivity enhancement.
  • Promote adherence to policies, procedures, and instructions among employees.

• Daily Operations:

  • Ensure work continuity through effective daily operations related to the job.
  • Prepare timely and accurate reports to meet requirements, objectives, and standards.
  • Address the needs of both internal and external customers with professionalism.

Qualifications:

• 8+ years of relevant professional experience in security engineering.
• Bachelor’s degree in a related field is required; a Master’s degree is highly preferred.
• Certification in OSCP or CDP is mandatory; OSCE and CDE certifications are a plus.
• Proven expertise in penetration testing for web and mobile applications.
• Strong proficiency in application security and the integration of security practices into the CI/CD pipeline.
• Comprehensive knowledge of cloud information security, with the ability to generate and monitor security alerts effectively.
• Familiarity with security infrastructure/operations tools and practices, including Web Application Firewalls (WAF).
• Experience with cloud penetration testing is an advantage.

About HungerStation:
HungerStation is part of the Delivery Hero Group, the world’s pioneering local delivery platform, with operations in over 70 countries. Our mission is to deliver an amazing experience—fast, easy, and to your door. HungerStation is headquartered in Berlin, Germany, and has been publicly listed on the Frankfurt Stock Exchange since 2017.

What We Offer:

• Relocation support globally for permanent employees.
• The opportunity to exchange ideas and collaborate with over 2000 colleagues across various teams within Delivery Hero.
• A personal educational budget for conferences and external training.
• Access to an e-learning platform and participation in various in-house training programs.
• And much more!