Application Security Engineer

Via is using technology to transform transportation around the world. From changing a single person's daily commute to reducing humanity's collective environmental footprint — we've got huge goals.

As an
Application Security Engineer
at Via, you will be a key member of the team, responsible for ensuring the security of Via's applications throughout the software development lifecycle. You will work closely with development, operations, and product teams to identify and mitigate vulnerabilities, promote secure coding practices, and build a robust application security program.

What You'll Do:

• Perform security assessments, including penetration testing, vulnerability scanning, and code reviews, to identify security weaknesses in applications.
• Collaborate with development teams to remediate identified vulnerabilities and implement secure coding practices.
• Develop and deliver security training to development teams on secure coding techniques and common vulnerabilities.
• Define and implement application security testing strategies, including static analysis, dynamic analysis, and software composition analysis.
• Integrate security testing tools and processes into the CI/CD pipeline.
• Contribute to the development and maintenance of application security policies, standards, and procedures.
• Research and evaluate new application security tools and technologies.
• Monitor application security metrics and provide regular reports on the security posture of applications.
• Participate in incident response activities related to application security.
• Champion a security-first culture within the engineering organization.

Who You Are:

• A Bachelor's degree in Computer Science or a related field is a plus.
• Minimum of 2 years of experience as an Application Security Engineer, Penetration Tester or in a similar role.
• Strong understanding of application security concepts, including OWASP Top 10, CWE Top 25, and SANS Critical Security Controls.
• Experience with various application security testing tools and techniques (e.g., SAST, DAST, SCA).
• Proficiency in at least one scripting language (e.g., Python, JavaScript, Ruby).
• Experience with secure coding practices and vulnerability remediation.
• Familiarity with CI/CD pipelines and DevOps practices.
• Excellent communication and collaboration skills.
• Ability to work independently and as part of a team.
• Experience with cloud platforms (AWS is an advantage).

Compensation and Benefits:

• Our product impacts millions of users around the world providing alternative transport solutions that are more: efficient and accessible, changing cities to make them greener.
• Competitive compensation package which includes base salary and stock options
• Health insurance with a discount for family members
• Hybrid work and a lovely office situated in the heart of TLV, in Midtown, close to the light rail and train station
• Career development and growth opportunities
• Other perks: Freefit and other sports lessons, 10bis/Cibus - you choose, happy hours, team events, communities and many more benefits

We're Via, and we build technology that changes the way the world moves. We're driven by a simple mission: to create modern and efficient public transportation systems that provide far greater access to jobs, healthcare, and education. With our best in class suite of products, we make transit thrive.

Our teams of world-class engineers, data-scientists, product managers, operations specialists, marketers, transit experts and more bring cutting-edge AI-powered software and innovative technology-enabled operations to our partners across the globe. Founded in 2012, Via builds solutions to digitize, automate, and enable data-driven decision making for entire transportation networks; fixed-route buses, microtransit, paratransit, school buses, autonomous vehicles, and more.

If you're excited to be at the forefront of modernizing the future of transportation, are up for solving tough problems, and willing to become/already are a transit nerd, we are the place for you. Even if your past experience doesn't align perfectly with every qualification in the job description for this role, we encourage you to apply. You may be just the right candidate for this or other opportunities.

Ready to join the ride?

Via is an equal opportunity employer.