monday.com
About the Company
The monday.com Work OS is a low code- no code platform that democratizes the power of software so organizations can easily build work management tools and software applications to fit their every need. The platform intuitively connects people to processes and systems, empowering teams to excel in every aspect of their work while creating an environment of transparency in business. monday.com has offices in Tel Aviv, New York, Miami, Chicago, Denver, London, Warsaw, Sydney, Melbourne, São Paulo, and Tokyo. The platform is fully customizable to suit any business vertical and is currently used by over 225,000+ customers across 200 industries in over 200 countries and territories.
Listed Jobs
- Company Name
- monday.com
- Job Title
- Application Security Expert - London
- Job Description
-
Description
monday.com is looking for an application security expert to provide application security services including secure coding techniques and reviews, education & awareness, processes and tools, security testing support and guidance for internal software development projects. The Application Security Team is based in our headquarters, Tel Aviv, Israel - you’ll be joining another team member in London.
monday.com works hybrid with 3 days in the London office.
About The Role
Provide guidance on security best practices and compliance, and undertake security testing.
Develop security testing plans and integrate them into the software development lifecycle.
Perform and oversee security testing and manage remediation of identified vulnerabilities.
End-to-end work on reported vulnerabilities as part of the bug bounty program.
Identify Application security risks and requirements for new projects and system developments.
Sign-off on application security prior to live implementation.
Collaborate with the architecture and development teams to review the design and code for security vulnerabilities.
Embed/improve security threat modeling and secure coding in the development lifecycle.
Provide technical specialist advice to ensure that security standards are understood and can be complied with.
Monitor and proactively report on current threats and vulnerabilities to application security.
Prepare and monitor application security metrics and KPIs.
Initiate and automate processes for detecting and monitoring the platform security and integrate security tools into the S-SDLC.
Work with the local DevSecOps team to improve our S-SDLC and take part in our security incident response team
Requirements
At least 3 years of experience in software engineering.
At least 2 years of experience in application security.
In-depth knowledge of application security vulnerabilities, testing techniques, and the OWASP framework.
Team player able to build relationships across the organization, also remotely
In-depth understanding of secure web application development.
Experience in web application and Agile development methodologies.
Exposure to methods of promoting security awareness.
Strong communication (verbal/written) and influencing skills, with an ability to manage internal and external relationships up to senior levels of management.
Anticipates problems and identifies long-term implications of decisions and actions.
Ability to work and learn alone.
Able to prioritize workload and drive work to set deadlines.
Experience working with the hacker/pen-testing community.
Meet The Security Team- Read Out Blog Post
https://www.startupforstartup.com/ww/blog/appsec-challenges-and-how-we-do-it/
Social Description
monday.com is looking for an application security expert to provide application security services including secure coding techniques and reviews, education & awareness, processes and tools, security testing support, and guidance for internal software development projects. The Application Security Team is based in our headquarters, Tel Aviv, Israel - you’ll be the first to join the team from Warsaw, Poland, where we have R&D, DevOps, and SecDevOps teams.
Meet The Security Team- Read Out Blogpost
https://www.startupforstartup.com/ww/blog/appsec-challenges-and-how-we-do-it/
London, United Kingdom
On site
16-03-2025
- Company Name
- monday.com
- Job Title
- Application Security Researcher
- Job Description
-
Description
monday.com is looking for an application security researcher to research our platform for vulnerabilities, manage our bug bounty program, and work with R&D to enhance the security of our platform. The Application Security Team is based in our headquarters, Tel Aviv, Israel - you’ll be the first to join the team from London.
monday.com works hybrid with 3 days in the London office.
About The Role
Perform black, gray, and white box penetration testing on monday.com’s platform - both frontend and backend.
Manage the bug bounty program, including hacker engagement and communication with the hacker community.
End-to-end work on reported vulnerabilities as part of the bug bounty program.
Provide guidance on security best practices to developers.
Embed/improve security threat modeling and secure coding in the development lifecycle.
Develop security abuse cases for testing as part of the software development lifecycle.
Perform and oversee security testing and manage remediation of identified vulnerabilities.
Monitor and proactively report on current threats and vulnerabilities to application security.
Initiate and automate processes for detecting and monitoring the platform security.
Requirements
Scripting capabilities and automation mindset.
At least 2 years of experience in web penetration-testing.
In-depth knowledge of application security vulnerabilities, testing techniques, and the OWASP framework.
Experience working with the hacker/pen-testing community.
Team player able to and build relationships across the organization, also remotely.
Understanding of secure web application development.
Comprehensive knowledge of IT and information security subject matter.
Exposure to methods of promoting security awareness.
Strong communication (verbal/written) and influencing skills, with an ability to manage internal and external relationships.
Anticipates problems and identifies long-term implications of decisions and actions.
Ability to work and learn alone.
Able to prioritize workload and drive work to set deadlines.
London, United Kingdom
On site
16-03-2025
- Company Name
- monday.com
- Job Title
- Application Security Researcher - London
- Job Description
-
Description
monday.com is looking for an application security researcher to research our platform for vulnerabilities, manage our bug bounty program, and work with R&D to enhance the security of our platform. The Application Security Team is based in our headquarters, Tel Aviv, Israel - you’ll be the first to join the team from London.
monday.com works hybrid with 3 days in the London office.
About The Role
Perform black, gray, and white box penetration testing on monday.com’s platform - both frontend and backend.
Manage the bug bounty program, including hacker engagement and communication with the hacker community.
End-to-end work on reported vulnerabilities as part of the bug bounty program.
Provide guidance on security best practices to developers.
Embed/improve security threat modeling and secure coding in the development lifecycle.
Develop security abuse cases for testing as part of the software development lifecycle.
Perform and oversee security testing and manage remediation of identified vulnerabilities.
Monitor and proactively report on current threats and vulnerabilities to application security.
Initiate and automate processes for detecting and monitoring the platform security.
Requirements
Scripting capabilities and automation mindset.
At least 2 years of experience in web penetration-testing.
In-depth knowledge of application security vulnerabilities, testing techniques, and the OWASP framework.
Experience working with the hacker/pen-testing community.
Team player able to and build relationships across the organization, also remotely.
Understanding of secure web application development.
Comprehensive knowledge of IT and information security subject matter.
Exposure to methods of promoting security awareness.
Strong communication (verbal/written) and influencing skills, with an ability to manage internal and external relationships.
Anticipates problems and identifies long-term implications of decisions and actions.
Ability to work and learn alone.
Able to prioritize workload and drive work to set deadlines.
London, United Kingdom
On site
18-03-2025