Applications Security Engineer | AppSec
Auckland, Auckland, New Zealand
2d ago


Want to work for a company where you can learn and grow with our innovative tech stack? Do you like working with others to develop safe applications?

While you stand or sit at your configurable stand-up desk, looking over the top of your laptop and monitors at the exciting environment around you, you’ll notice you are at a company that :

  • Values your ideas
  • Empowers everyone to create and innovate
  • Let’s you work with the latest tech
  • Encourages continuous learning
  • Has flexible hours and working arrangements
  • Promotes cyber-security awareness and ownership at all stages of software development
  • Working at EROAD means working in a job you love. We have a great office location in a safe area with parking, multiple locations for eating out, and close to a shopping mall.

    You will want to come to the office every day and do awesome stuff. We offer outstanding opportunities to experienced AppSec Engineers who are interested in an exciting career in a fast-growing technology company.

    EROAD modernises road charging and compliance for road transport by replacing paper-based systems with easy-to-use electronic systems.

    EROAD introduced the world's first nationwide electronic road user charging system in New Zealand in 2009. The company is headquartered in Auckland, with operations in Australia and North America.

    We value high-quality work, using the latest and most exciting tech in an agile environment. EROAD develops cloud-native micro services, mobile apps, and serverless applications.

    The role

    You will have an in-depth understanding of cyber-security threats and typical attack types including the OWASP top 10 with specific emphasis on web technologies and cloud experience.

    You'll have a successful track record in penetration testing of web applications, and working with agile teams. You'll also have experience with coding / scripting languages (such as Python) and the ability to understand the basics of code written in languages such as Java, in order to look for potential security vulnerabilities as part of security code reviews.

    A good understanding of AWS would be a bonus.

    Required Experience

  • Five+ years' experience in a software engineering environment with proven experience working with web penetration testing.
  • Customer centric mindset with the ability to put yourself in their shoes and understand their needs
  • Threat modeling experience ideally with STRIDE
  • Some demonstrable personal background in software engineering with the ability to understand code and write scripts
  • Experience with cloud-hosted services ideally AWS
  • Experience in working with version control systems (e.g. Git)
  • Competent working with engineering teams to communicate cyber-security risks and suggested controls
  • Strong understanding of Linux and shell scripts
  • Experience and understanding of working under an agile software engineering framework
  • Benefits

    At EROAD we value diversity, and are a multi-cultural company with people coming from several locations all over the world.

    We want to provide the best working environment for our staff. Go to the sanctuary room for some quiet self-reflection, or discuss plans in one of the many break-out spaces.

    We also have a lot of fun along the way with possibilities for out of work activities such as Yoga and Toastmasters. We have lots of cool gadgets as well as an Arcade machine and Table tennis table!

    Report this job

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form