Information Security

Application Security Analyst (Internal) (Remote)

Remote   |   Full Time
Apply Now

*This internal hiring opportunity is exclusively available to current employees of CAKE.com ONLY.

đź“Ť Remote | CET timezone

Application Security Analyst: Not Just a "Cop", but a Partner!

In our team, you won't be the person who just says "no." You will be a key partner to all teams, helping us build a fortress while keeping the doors open for innovation.


About the position

Our Application Security team performs a variety of security related functions, from vulnerability assessments to internal penetration testing to secure development tuition, and all aspects of application security / InfoSec security. 

This is a varied role with a chance to research latest trends, new tools, and continuously improve cake.com application security.


What You'll Do
  • Bug Bounty Hunting: Analyze reports from our bug bounty program. Your task is to masterfully distinguish between a real threat and a false positive.
  • Offensive Testing: Actively "attack" our Web, Android, and iOS apps. We find the holes before the bad guys do!
  • Security by Design: Collaborate with the Product team during the planning phase. You ensure every new feature is secure at the root.
  • Cross-team Collaboration: Be the "right hand" to DevOps, QA, and Dev teams. We integrate security into the daily flow, not as an afterthought.
  • Security "Swiss Army Knife": You are involved in every task that has a security prefix. Diversity of work is guaranteed!

Must-Haves

  • Analytical Mind: The ability to find a needle of risk in a haystack of logs.
  • Technical Breadth: Deep understanding of security for both Web and Mobile platforms (Android/iOS).
  • Communication Pro: You can explain to a developer why something is a risk, and to a Product Manager how to keep it functional but safe.
  • Hunger for Knowledge: Security changes hourly. You follow trends and learn something new every single day.
  • Fluent in English.
  • Ability to work in CET timezone.

Nice-to-Haves

  • Automation is your BFF: You love scripting to kill boring, repetitive tasks.
  • Tool Expert: You’re comfortable with Burp Suite, OWASP ZAP, or similar gear.
  • The "ELIF" Skill: You can explain a complex security exploit in simple terms.
  • Secure Code Review: You enjoy diving into the source code to find hidden vulnerabilities.

Why join us?

Because here, security is a team sport.


Join us now! 


CAKE.com – Simplifying Work One Piece at a Time!

Submit Your Application

You have successfully applied
  • You have errors in applying