Mend

We are looking for a highly motivated, talented, and hands-on Application Security Engineer who will participate in building our next-generation static code analysis engines for detection and remediation capabilities. 
This role offers challenges across a wide variety of responsibilities. You will have an opportunity to establish the application security discipline in the SAST group, and define working procedures, processes, and tools. 

The successful candidate will work closely with algorithms developers, improving the engines, developing security rules, performing a security review of source code, and suggesting optimization. We are searching for a team player with a can-do approach.

Application security leader will work very closely with code analysis algorithm developers, he will enrich them with application security knowledge. It's a rare opportunity to make an impact on the application security market, by establishing the field of application security research in Mend, building the best in market static code analysis tool. You will be researching different programming languages for variety of CWE's


what you will do :

- Performing security source code analysis.
- Analyze application vulnerabilities and provide mitigation strategies.
- Researching, designing, and writing application security rules for detection, while working closely with a development team for SAST.
- Analyzing different programming frameworks in different programming languages for potential sources and sinks for SAST.
- Handling complex cases escalated from the field and other teams.
- Improving Mend SAST engines for various programming languages.


You must have:

- Experience with security review of source code – Must!
- At least 5 years of experience in application security or security research, including the understanding of application security attacks, vulnerabilities, and mitigations- Must!
- Knowledge of common Web Application security vulnerabilities (OWASP TOP10, SANS 25, etc.) – Must!
- Experience with at least 2-3 of the following programming languages -Java, C#, Go, JS, Python, PHP, Ruby, etc- Must!
- Language agnostic approach to vulnerability identification in the source code (ability to read multiple programming languages source code and identify vulnerable parts).
- Proven experience leading tasks and projects end-to-end, passion to grow to a TL position
- Excellent English – written and verbal.
- Excellent interpersonal and communication skills.


Nice to have:

- BSc or BA in Computer Science or a similar degree
- Experience in managing application security engineers
- Experience working with development teams.
- Experience with bug bounty research or published advisories or exploits for discovered 0day vulnerabilities in applications.


The recruitment process:

1.Initial phone call – Recruiter (20 minutes)
2. Technical interview including code review questions (Zoom) – VP Engineering (1 hour)
3. Home task 
4. 2nd technical interview (Zoom) 
5. Final interview with EVP and HR (in the office) – 45 minutes each

We are seeking an experienced Senior Java Developer to join our Core application Team. As a Senior Java Developer, you will be responsible for designing, developing, and maintaining a software application that works with large scale systems that serve enterprises. The ideal candidate will have a deep understanding of Java and Big Data technologies and the ability to work in a fast-paced, dynamic environment.


Join our dynamic team, where innovation meets scalability in tackling the complexities of a high-scale system. Trusted by industry giants like IBM, Microsoft, and SAP, we pride ourselves on providing cutting-edge Software Composition Analysis (SCA) solutions to over 1000 customers, ensuring top-notch security and compliance.


Responsibilities
Design, develop, troubleshoot, and maintain high-availability systems using Java.
Optimize existing services to be enterprise-grade and scalable, ensuring they meet the demands of high-volume usage.
Write high-quality, maintainable code and ensure that code is thoroughly tested and debugged.
Participate in code reviews and ensure that all code meets the standards set by the team.
Mentor other developers and provide guidance and support as needed.


Requirements
A minimum of 5 years of experience in Java software development, including experience with multithreading, concurrency, and performance optimization-Must!
Strong experience working with SQL databases.
Ability to work independently and as part of a team.
Extensive experience leading design and architecture-related activities.
Familiarity with Agile development methodologies and experience working in a fast-paced, dynamic environment.
Experienced with AWS and CI/CD pipelines.
Excellent interpersonal and communication skills.
Excellent English – written and verbal.
Bachelor's degree in a relevant field (preferred).


The recruitment process
Initial phone call – Recruiter (10 minutes)
Technical interview +Intro  (Zoom/F2F) – Hiring manager (1 hour)
2nd technical interview (Zoom/F2F) - Hiring Manager(1 hour)
Final interview HR (in the office) – 45 minutes 

We are seeking a brilliant Senior QA Automation Developer to join our team.

This position is extremely challenging and requires a lot of effort, agility and knowledge of code security and quality in general. 

You will make a remarkable impact on Mend’s SAST product quality and on the entire security application industry.

We are looking for versatile Quality Automation Developer enthusiasts. If you are up for the challenge, come and join us!


Responsibilities

Design, build, develop and maintain efficient, reusable, scalable and stable Automation Framework.
Review, test, and verify the product to quality and security standards of the industry.
Ensure to provide key measurements of performance, quality, and responsiveness of the applications.
Think out of the box how to plan, design test documents and plans.
Be passionate about Quality in general.


Recruitments 

5+ years of experience with Automation development (preferably Java)
Experience with API Automation Testing - Must
Understanding of Web and Cloud native applications - Must
Experience with Windows and Linux - Must
Excellent English – written and verbal - Must
Experience with CI/CD systems - Github Actions / GitLab CI / Jenkins - Big advantage
Experience with Load /stress/ Performance testing such Jmeter/Gatling/K6 - Big advantage
Experience with Software Security vulnerabilities - OWASP - Big advantage
Experience with AWS cloud services and cloud architecture - Big advantage
Experience with Playwright - Big advantage
Experience with Selenoid/Moon - Big advantage
Experience with Reporting and monitoring tools ReportPortal/Allure - Big advantage
Experience Docker – Big advantage
Experience with multiple programming languages – Big advantage
Team player, Get-it-done attitude and a self quick learner
Ability to manage multiple projects at the same time in a fast-paced environment.
B.Sc./B.A. degree in computer science, Software engineering or related field – Big advantage


Recruiting process:
1- Phone interview with HR - 15 minutes
2- Technical interview with hiring manager- 1 hour
3- Home assignment 
4- 2nd Technical interview with VP engineering
5- HR interview
6- reference call

We are seeking a highly skilled and experienced Senior Software Developer to join our team. As a Senior Software Developer, you will be responsible for designing, developing, and maintaining both the backend and frontend components of our software applications.



Responsibilities:

-Designing and developing software applications from concept to deployment.
-Collaborating with cross-functional teams to gather requirements and define project objectives.
-Developing efficient and reliable backend systems using Java, and other related technologies.
-Design and implement efficient, reusable, and scalable front-end React features, ensuring the development of high-quality components.
Integrating backend APIs and services with frontend components.
-Optimizing application performance and ensuring scalability and reliability.
-Creating and maintaining databases, writing efficient queries, and ensuring data integrity.
-Conducting thorough testing and debugging to identify and resolve issues.
-Collaborating with other developers and participating in code reviews to maintain code quality and best practices.
-Staying up to date with emerging technologies and trends in software development.

Requirements:

-5+ years of experience in software development, with a focus on Java-Must!
-Solid understanding of databases, including SQL and NoSQL technologies, and experience in writing efficient queries.
-Familiarity with agile development methodologies and practices.
Ability to work independently as well as collaboratively in a team environment.
-Strong problem-solving and analytical skills.
-Excellent communication and interpersonal skills.


Preferred Skills:

-2+ React, JavaScript, Material UI 4/5
-Experience with cloud platforms such as AWS, Azure, or Google Cloud Platform.
-Knowledge of containerization and orchestration tools like Docker and Kubernetes.
-Familiarity with DevOps practices and CI/CD pipelines.
-Understanding of security best practices in software development.


Recruiting process:
1- Phone interview with HR - 15 minutes
2- Technical interview with hiring manager- 1 hour
3- Home assignment 
4- 2nd Technical interview with the hiring manager- 45 min 
5- Technical interview with the Director of R&D- 1 hour
6- HR interview
7- reference call

We are looking for a DevOps Engineer with an emphasis on developer experience. If you have a strong passion for building DevOps tools which help developers be more productive and enjoy helping people, you should strongly consider joining Mend as a DevOps engineer. You will participate in large-scale, cross-team efforts and work closely with R&D to provide the best DevOps solutions.

**Working in a hybrid model! ( 2 days from the office, 3 days from home. )**



Responsibilities: 

-Design, implement, and manage cloud and containerized architectures in AWS and Azure
-Design, develop, and manage scalable systems with CI/CD in mind, to support multiple production environments and use cases
-Tackle production issues and bring OOB thinking to the table
-Evaluate new cloud-native technologies and vendor products to improve our SaaS offerings continuously
-Work with dev experience tools to improve the speed and effectiveness of developer teams


Requirements:

-3+ years of relevant DevOps experience in large-scale production environments
-Hands-on experience administering public clouds (AWS and Azure)
-2+ years of infrastructure automation, configuration management and container orchestration (Terraform, ArgoCD, Helm)
-Helm chart templating
-Programming skills in Python/Shell or any other scripting programming languages
-Experience with building CI/CD pipelines for applications and microservices using tools such Jenkins and Github Actions.
-Strong abilities to execute cross-organization projects, with emphasis on leading the DevExp effort in company.

Recruiting process:
1- Phone interview with HR - 15 minutes
2- Technical interview with hiring manager- 1 hour
3- Home assignment 
4- 2nd Technical interview with the EVP R&D- 45 min 
5- HR interview
6- reference call