We're always looking for the ones truly passionate about their work. If you are amongst them, you can rest assured there is a place for you in eMAG. We've grown very fast and are determined to keep doing so. What brought us here is our desire for continuous evolution and practical results.  

More than 6000 colleagues are part of eMAG Teams. We strongly believe in people's development and therefore every year we invest more and more energy and resources to remain an organization that is constantly learning. We want to ensure that you'll have the most talented colleagues and the proper environment to grow and achieve great results, to become what you desire on a personal and professional level. Join us, grow faster!  

Security Engineer (Flip Team) 

Flip is setting up the Cyber Security team with the mission of protecting Flip's data and IT assets by employing technologies and processes to prevent, detect, and manage cyber threats. As the environment evolves, new security capabilities must be introduced and integrated into infrastructure and software development processes.

In this role, you will coordinate operational information security together with asset owners and Development teams. You will drive vulnerability management initiatives and support the integration of security controls across applications, cloud environments and internal infrastructure. While acting as an individual contributor when needed, you will focus on strengthening secure development practices and reducing risk exposure across the organization.

If you can independently identify risks, clearly communicate impact, and drive remediation together with Development and Infrastructure teams, this role is for you.

What you'll have to do:

• Conduct vulnerability assessments on Internet-facing and internal systems;
• Perform penetration testing against software applications and APIs;
• Integrate and support security controls within CI/CD pipelines (SAST, DAST, dependency scanning, secret detection);
• Collaborate with Development teams to embed security into build and release workflows;
• Evaluate application architectures, network security and encryption protocols;
• Participate in Cloud Security assessments (IAM, misconfigurations, exposure risks);
• Document technical issues identified during assessments and incidents and provide actionable remediation guidance;
• Follow up on implementation of corrective actions;
• Maintain and improve vulnerability management processes;
• Collaborate with technical teams across the organization to identify, assess and mitigate security risks;
• Align with company-wide security directives;
• Research technological advancements and recommend security improvements across infrastructure and applications.

What makes you a good fit:

• Minimum 3 years hands-on experience in penetration testing and vulnerability assessment;
• Experience working with secure software development lifecycle (SSDLC) practices;
• Experience with CI/CD security integration (SAST, DAST, code scanning, dependency scanning);
• Practical knowledge of Cloud Security principles (IAM, network segmentation, storage security, misconfiguration detection);
• Strong understanding of application, infrastructure and network security;
• Experience with web application testing, API security, infrastructure testing and code reviews;
• Programming or scripting experience (Python, JavaScript, Bash or similar);
• Experience collaborating closely with Development teams;
• High sense of ownership and ability to drive security initiatives independently.

What makes you stand out: 

• Experience securing containerized workloads;
• Knowledge of IDS/IPS solutions; Knowledge of SIEM solutions;
• Experience with threat modeling and secure architecture reviews.

What we've prepared for you:

• Medical subscription: Regina Maria or Medicover, with dedicated healthcare packages for employees and preferential options for family members;
• A flexible monthly benefits budget through Benefit Edenred, offering autonomy in selecting preferred benefits.;
• Access to Bookster digital library, providing a wide range of educational and development resources;
• An accelerated learning environment through Prosus Academy, offering access to extensive learning materials and development opportunities;
• A dedicated relaxation space, designed to support well-being and informal interaction.

Curious to find out more about the next step in your career? Apply now and if your experience is relevant for the role you wish, we will give you a call for more details! Also, here you can find our confidentiality policy if you want to consult it.