Vacancies

Инженер по безопасности приложений ID 615

  • Income level not specified
  • Almaty

Responsibilities:

– Advising on secure programming practices, participating in code reviews, and integrating security into SDLC

– Study of application architecture, building threat models, early identification and elimination of risks

– Integration of security tools

– Participate in the analysis and response to incidents related to application security

– Promotion of early testing practices, rapid vulnerability removal, and a culture of secure development

– Conducting training sessions, workshops, and raising awareness among developers on OWASP, ASVS, and safe design principles.



Requirements:

– Confident programming skills

– Deep understanding of web application architectures (including microservice approaches).

– Excellent knowledge of OWASP Top 10 and threat modeling techniques

– Experience working with security tools (ZAP, Dependency-Track, Burp, etc.)

– Strong scripting skills in Python, Go, Bash or similar languages to automate security tasks.


It will be a plus:

– Specialized certificates (OSCP, OSWE, GWAPT, GCPN, etc.).



We offer:

– Flexible work format from the office

– Medical insurance from the first day

– Budget for education: language courses, trainings, certifications

– Compensation for sports and mental health expenses

– 20 working days of vacation and paid sick leave

– The salary level is discussed at the interview

Contact information

  •  aymaral.andossova@dif.tech
ТОО MX CREDIT SYSTEMS (ЭМЭКС КРЕДИТ СИСТЕМС)
IT-company
Participant of Astana Hub
  • Job Type

    Full-time
    Flexible schedule

  • Direction

    Information Technology

  • Required Education Level

    Bachelor's degree

  • Work experience

    At least 3 years

  • Vacancy Status

    Open

  • Publication Date

    26 november 2025