Application Security Team Leader

As an Application Security Team Leader, you will be responsible for leading and mentoring a team of application security engineers, while also contributing hands-on to the security of Veeam products. You will work closely with development, product, and other cross-functional teams to ensure secure software development practices throughout the product lifecycle.

Your tasks will include:

• Leading, mentoring, and developing a team of application security engineers
• Organizing and distributing tasks within the team, setting priorities, and monitoring progress
• Conducting threat modeling and design reviews for new and existing Veeam products
• Overseeing and participating in manual source code security audits
• Utilizing automated application-analysis tools and ensuring their effective adoption within the team
• Guiding and performing manual security testing of products (penetration testing)
• Analyzing requirements and collaborating with all stakeholders involved in the development process
• Driving security best practices and awareness throughout the engineering organization
• Participating in the creation and development of each product at all stages of its life cycle
• Reporting on the status and results of security activities to management

What we expect from you:

• 5+ years of experience in application security, software testing, or software development
• Proven experience in leading or mentoring a technical team
• Strong knowledge in information security, threat classification (SQL Injections, CSRF, DDoS, etc.), and countermeasures
• Knowledge of one or more programming languages: C/C++/C#/JavaScript
• Solid understanding of secure software development principles and best practices
• Administration skills in Microsoft Windows, Linux, or Unix
• Excellent communication and interpersonal skills, with the ability to work effectively across teams
• Strong analytical and organizational skills
• Desire and ability to foster a culture of continuous improvement and learning within the team
• Willingness to relocate to the company’s R&D office in the Czech Republic
• Good verbal and written communication skills in English

Additional skills:

• Knowledge of scripting languages (Python, PowerShell, Bash, Ruby, etc.)
• Understanding of modern cryptographic algorithms
• Experience with DAST and SAST tools
• Skills using OWASP ZAP, Burp Suite, Kali Linux tools
• Relevant certifications such as OSCP, CEH, CSSLP, etc
• Experience with planning, prioritization, and reporting within a technical team is a plus

We offer:

• Medical insurance for you, your spouse and your children (up to the age of 18)
• Annual vacation days
• Meal allowance
• Statutory insurances: Veeam covers employee’s healthcare, nursing care and unemployment insurances contributions. Maximum insurance contributions are capped as stipulated by the law
• Accident insurance: Worldwide 24/7 coverage of accident cases including invalidity benefit, rescue costs coverage, death and disability coverage
• Veeam Care Days – additional 24 hours for your volunteering activities
• Professional training and education, including courses and workshops, internal meetups, and unlimited access to our online learning platforms (Percipio, Athena, O’Reilly) and mentoring through our MentorLab program

Please note: If the applicant is permanently present outside of Portugal, Veeam reserves the right to refuse to consider the application for a job. Remote job is only possible in case the employee is located in Portugal.

#LI-AR1