🏠 home 🥳 events 📨 contact 👩 elaine signup/login



Givatayim (near to train)
Mend.io (formerly WhiteSource) effortlessly secures what developers create. 
Mend.io uniquely removes the burden of application security, allowing development teams to deliver quality, secure code faster. 
With a proven track record of successfully meeting complex and large-scale application security needs, the world’s most demanding software developers rely on Mend.
Mend.io offers an enterprise suite of application security tools designed to help organizations build and manage a mature, proactive AppSec program. Mend.io supports both developers and security teams by giving each team different, but complementary, tools to work with—enabling them to stop chasing vulnerabilities
and start proactively managing application risk. 
The company has more than 1,000 customers, including 25 percent of the Fortune 100, and manages Renovate, the open source automated dependency update project.

We’re working in a hybrid model - two days from our offices (Givatayim, Bar-Lev next to Carmiel, both locations accessible by train, or Boston, US) and three days remotely from home. 
In Mend’s R&D team, you can find the best people in the industry! (And they are also fun to work with!) with 85+ development pros to spend your workday with. 
Our well-being and your personal development are important to us, so in addition to a super flexible workday and hybrid work model, we also offer a very generous vacation day policy with four recharge days in a year. 
We also offer internal promotion and development programs within the company to ensure we keep our employees engaged and empowered!

Open Roles

294 👀
Application Security Engineer Lead (full time job)
Mend.io (formerly WhiteSource) effortless...

We are looking for a highly motivated, talented, and hands-on Application Security Engineer who will participate in building our next-generation static code analysis engines for detection and remediation capabilities. 
This role offers challenges across a wide variety of responsibilities. You will have an opportunity to establish the application security discipline in the SAST group, and define working procedures, processes, and tools. 

The successful candidate will work closely with algorithms developers, improving the engines, developing security rules, performing a security review of source code, and suggesting optimization. We are searching for a team player with a can-do approach.

Application security leader will work very closely with code analysis algorithm developers, he will enrich them with application security knowledge. It's a rare opportunity to make an impact on the application security market, by establishing the field of application security research in Mend, building the best in market static code analysis tool. You will be researching different programming languages for variety of CWE's

what you will do :

- Performing security source code analysis.
- Analyze application vulnerabilities and provide mitigation strategies.
- Researching, designing, and writing application security rules for detection, while working closely with a development team for SAST.
- Analyzing different programming frameworks in different programming languages for potential sources and sinks for SAST.
- Handling complex cases escalated from the field and other teams.
- Improving Mend SAST engines for various programming languages.

You must have:

- Experience with security review of source code – Must!
- At least 5 years of experience in application security or security research, including the understanding of application security attacks, vulnerabilities, and mitigations- Must!
- Knowledge of common Web Application security vulnerabilities (OWASP TOP10, SANS 25, etc.) – Must!
- Experience with at least 2-3 of the following programming languages -Java, C#, Go, JS, Python, PHP, Ruby, etc- Must!
- Language agnostic approach to vulnerability identification in the source code (ability to read multiple programming languages source code and identify vulnerable parts).
- Proven experience leading tasks and projects end-to-end, passion to grow to a TL position
- Excellent English – written and verbal.
- Excellent interpersonal and communication skills.

Nice to have:

- BSc or BA in Computer Science or a similar degree
- Experience in managing application security engineers
- Experience working with development teams.
- Experience with bug bounty research or published advisories or exploits for discovered 0day vulnerabilities in applications.

The recruitment process:

1.Initial phone call – Recruiter (20 minutes)
2. Technical interview including code review questions (Zoom) – VP Engineering (1 hour)
3. Home task 
4. 2nd technical interview (Zoom) 
5. Final interview with EVP and HR (in the office) – 45 minutes each

Feb 20, 10:18 AM
12 👀
Senior QA Automation Developer
Mend.io (formerly WhiteSource) effortless...

We are seeking a brilliant Senior QA Automation Developer to join our team.

This position is extremely challenging and requires a lot of effort, agility and knowledge of code security and quality in general. 

You will make a remarkable impact on Mend’s SAST product quality and on the entire security application industry.

We are looking for versatile Quality Automation Developer enthusiasts. If you are up for the challenge, come and join us!


Design, build, develop and maintain efficient, reusable, scalable and stable Automation Framework.
Review, test, and verify the product to quality and security standards of the industry.
Ensure to provide key measurements of performance, quality, and responsiveness of the applications.
Think out of the box how to plan, design test documents and plans.
Be passionate about Quality in general.


5+ years of experience with Automation development (preferably Java)
Experience with API Automation Testing - Must
Understanding of Web and Cloud native applications - Must
Experience with Windows and Linux - Must
Excellent English – written and verbal - Must
Experience with CI/CD systems - Github Actions / GitLab CI / Jenkins - Big advantage
Experience with Load /stress/ Performance testing such Jmeter/Gatling/K6 - Big advantage
Experience with Software Security vulnerabilities - OWASP - Big advantage
Experience with AWS cloud services and cloud architecture - Big advantage
Experience with Playwright - Big advantage
Experience with Selenoid/Moon - Big advantage
Experience with Reporting and monitoring tools ReportPortal/Allure - Big advantage
Experience Docker – Big advantage
Experience with multiple programming languages – Big advantage
Team player, Get-it-done attitude and a self quick learner
Ability to manage multiple projects at the same time in a fast-paced environment.
B.Sc./B.A. degree in computer science, Software engineering or related field – Big advantage

Recruiting process:
1- Phone interview with HR - 15 minutes
2- Technical interview with hiring manager- 1 hour
3- Home assignment 
4- 2nd Technical interview with VP engineering
5- HR interview
6- reference call

Mar 11, 10:30 AM
31 👀
Senior Software Developer
Mend.io (formerly WhiteSource) effortless...

We are seeking a highly skilled and experienced Senior Software Developer to join our team. As a Senior Software Developer, you will be responsible for designing, developing, and maintaining both the backend and frontend components of our software applications.


-Designing and developing software applications from concept to deployment.
-Collaborating with cross-functional teams to gather requirements and define project objectives.
-Developing efficient and reliable backend systems using Java, and other related technologies.
-Design and implement efficient, reusable, and scalable front-end React features, ensuring the development of high-quality components.
Integrating backend APIs and services with frontend components.
-Optimizing application performance and ensuring scalability and reliability.
-Creating and maintaining databases, writing efficient queries, and ensuring data integrity.
-Conducting thorough testing and debugging to identify and resolve issues.
-Collaborating with other developers and participating in code reviews to maintain code quality and best practices.
-Staying up to date with emerging technologies and trends in software development.


-5+ years of experience in software development, with a focus on Java-Must!
-Solid understanding of databases, including SQL and NoSQL technologies, and experience in writing efficient queries.
-Familiarity with agile development methodologies and practices.
Ability to work independently as well as collaboratively in a team environment.
-Strong problem-solving and analytical skills.
-Excellent communication and interpersonal skills.

Preferred Skills:

-2+ React, JavaScript, Material UI 4/5
-Experience with cloud platforms such as AWS, Azure, or Google Cloud Platform.
-Knowledge of containerization and orchestration tools like Docker and Kubernetes.
-Familiarity with DevOps practices and CI/CD pipelines.
-Understanding of security best practices in software development.

Recruiting process:
1- Phone interview with HR - 15 minutes
2- Technical interview with hiring manager- 1 hour
3- Home assignment 
4- 2nd Technical interview with the hiring manager- 45 min 
5- Technical interview with the Director of R&D- 1 hour
6- HR interview
7- reference call

Mar 25, 8:56 AM
15 👀
Senior Full Stack Engineer - Platform Team
Mend.io (formerly WhiteSource) effortless...

We are searching for a highly skilled and experienced Senior Full Stack Engineer who excels in development using Java and has knowledge in javascript/typescript/React. 

As a key platform team member, you will play a vital role in owning the end-to-end responsibility for a unified Cybersecurity Platform. Our ideal candidate will demonstrate a deep understanding of software development principles, exceptional problem-solving abilities, and an unwavering commitment to delivering code of the highest quality.

**In this position, you will work in a hybrid model, which means you will spend two days at the office and three days working from home**.


• Design, develop, and maintain scalable and robust software applications.

• Write clean, efficient, and maintainable code.

• Conduct design and collaboration meetings.

• Optimize application performance and scalability.

• Taking part in an agile team working in scrum methodology.

• Mentor junior engineers and provide technical guidance.

• Perform code reviews and provide constructive feedback to ensure code quality.


• Bachelor's degree in Computer Science, Software Engineering.

• 5+ years of professional software development experience.

• 3+ years of proficiency in backend development using Java/Go/C# and Spring.

• 3+ years of experience in frontend development using TypeScript and React.

• Experience with database technologies such as MySQL, Redis, MongoDB.

• Familiarity with cloud platforms like AWS or Azure.

• Excellent problem-solving and analytical skills.

• Strong communication and collaboration abilities.

• Ability to work effectively in a fast-paced and dynamic environment.

Preferred Qualifications:

• Experience with microservices architecture.

• Familiarity with DevOps practices and tools.

• Knowledge of containerization technologies such as Docker and Kubernetes.

The Company: Mend.io offers an enterprise suite of application security tools designed to help organizations build and manage a mature, proactive AppSec program. Mend.io supports both developers and security teams by giving each team different, but complementary, tools to work with—enabling them to stop chasing vulnerabilities and start proactively managing application risk.

Our culture is open, inclusive, and engaging, and we work hard to foster a company where everyone feels valued. Mend is a company that lives by its values:

We are passionate about excellence
We see the world from the customer's perspective
We are better together

Mend.io's EEO Statement

Mend.io is an equal opportunity employer committed to encouraging and celebrating its diverse and inclusive workforce. We welcome all without regard to age, race, color, religion, gender identity and expression, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, citizenship, national origin, disability, military status, veteran status, political affiliation, or any other protected characteristics. All aspects of employment including hiring, training, advancement, and discipline will be solely based on merit and qualifications related to professional competence. Mend.io operates on a principle of mutual respect and acceptance, and every employee must follow Mend.io’s anti-harassment and anti-discrimination company policies.

Mend.io’s Diversity Commitment

At Mend.io, we believe bringing together diversity of experience and background creates a better place to work, a better product, and more opportunities to innovate. Mend.io is committed to doing its part to mend the equity gap, fostering a safe, inclusive environment to inspire and support employees to be their authentic selves and provide development opportunities for all.

mend@indydevs.comMay 23, 10:50 AM

apply to

Upload CV

About Blog Values
Premium Silver Contact
Articles Privacy policy Terms of service
indydevs © 2016-2024

Arlozorov 186, Tel Aviv, Israel
Dolores 240, Suite 12, San Francisco, CA