Information Security Engineer (White Hat)

We are Cytric Solutions a fast-growing unit within Amadeus, the biggest tech giant of the travel industry, dedicated to helping corporations in their digital transformation processes for business travel and expense.​

We’re made up of more than 700 people worldwide, who work together to provide a smooth, end-to-end digital experience to the employees and improve the efficiency of the corporations they work for.​

We have a mission, we’re empowered, agile, innovative – and ready to challenge the incumbents!​

In Cytric Solutions, we combine a scale-up culture with an insatiable hunger to disrupt the travel and expense ecosystem. ​

​

So, are you ready to help the world’s leading companies drive their digital transformation, and take them to the next level? ​

​

You can benefit from being part of a global international IT company while working for a strategic scale-up.​

You can power business acceleration and innovation for top companies and work with big tech giants like Microsoft.​

We have attractive benefits packages, countless opportunities to learn and grow your career, hybrid and flexible work set up.​

​

In Amadeus Cytric Solutions, we care for our people just as much as we care for our customers.​

​

Together we can build the smartest, most connected, sustainable and collaborative travel and expense ecosystem in the world, to transform the corporate traveler experience into a seamless, complete and enjoyable activity. 

For our location in Sofia, we are looking for а skillful and motivated Information Security Engineer (White Hat).

In this role, you will:

• Facilitate SDL (Secure Development Lifecycle) deployment by embarking DEV & QA in SDL Activities​

• Configure the application builds to allow the deployment of the Security scans and their execution

• Perform the vulnerabilities investigations to categorize them (Confirmed/False positive) and design/implement the remediations with the DEV/QA teams

• Train, help, share Security knowledge & information to DEV & QA​

• Train DEV & QA in his area to allow them to perform the SDL activities​

• Teach Binary & Source scan usage & identification (aka triage), tracking and resolution of vulnerabilities​

• Teach Dynamic scan usage + scripting & identification (aka triage), tracking and resolution of vulnerabilities​

• Share return on experience & knowledge to the Software Security Community

• Promote the SDL methodology & tools to improve adoption​

• Learn and upskill in SDL

• Attend trainings, Software Security Community to be fluent in SDL activities and Software Security

• Practice the usage of security tools & activities​

• Keep up to date regarding new Vulnerabilities found in third parties’ software (FWK, OSS, Products)​

• Make the link between Application Security Office and Engineering Community

About the ideal candidate

• 2+ years of experience as Information Security/ White Hat Engineer

• Experience with tools as Burp Suite, Qualys, Threats Manager Studio, Postman, ZAP, Blackduck, Fortify

• Scripting skills (Java code, Oracle SQLs, etc.), Quickly Address Security Issues, Developing and maintaining software application security policies and procedures, providing technical guidelines, developing, and maintaining documentation, designing technical solutions to address security weakness

• Minimum of a Bachelor’s degree in computer science or related fields, Ability to work collaboratively with senior management across multiple departments, ability to prioritize and execute tasks, ability to handle sensitive and confidential information, ability to handle multiple tasks simultaneously, strong analytical and problem-solving skills

• Advanced level of written and oral English

What will be considered as a plus:

• Experience with Azure
   

What can we offer you?

• Working for a company that has been voted as a Top Employer of Europe 

• A competitive salary and extensive range of benefits including life and health insurance

• Multisport card

• Public transport card / subsidy for a parking lot in the office

• 25+ days paid time off (increasing for up to 30, depending on your stay with us)

• A well-balanced mix between work from home and collaborative work from the office

• Career and development opportunities through R&D career paths

• Learning opportunities

• Foster innovation

• Impact millions of travelers from all around the globe

Application Process

• The application process will take a few minutes to complete. You’ll need to create your candidate profile in our system and upload your resume.

• If your profile matches what we’re looking for, one of our recruiters will contact you and organize a short phone interview.

Are you the One we’re looking for?  Join us to Power better journeys through travel technology!

Diversity & Inclusion