Senior Security Engineer - Red Team (Remote)

Before jumping into all the information about the role and what you can bring to the table, let us introduce ourselves real quick. About us We are Insider, the fastest-growing global MarTech scale-up and the #1 AI-native Customer Experience and Marketing platform trusted by enterprise brands worldwide. Our story began with six desks and a vision to create a single platform to make industry-first CX technologies and emerging channels accessible to marketers worldwide. Today, with 1500+ teammates across 50+ nationalities, we continue to push the boundaries of what’s possible in CX. Our architecture brings together unified customer data, advanced journey orchestration, and comprehensive AI capabilities by seamlessly blending predictive, generative, and agentic AI into a single customer engagement platform that empowers teams to activate customer engagement across 12+ channels. We recently raised one of the largest funding rounds in the industry, a $500M Series E led by General Atlantic. We are backed by top-notch investors, including Sequoia Capital, QIA, Riverwood, and Endeavor Catalyst, and trusted by 1200+ brands from high-growth startups to the most prestigious Fortune 500 companies such as Samsung, Nike, L’Oreal, Singapore Airlines, Nestlé, Nissan, Lenovo, Puma, IKEA, Allianz, Domino's, and the list goes on. Insider was congratulated for becoming one of the only woman-founded, women-led B2B SaaS unicorns in the world, achieving $200M in CARR (Committed Annual Recurring Revenue). According to Gartner, we are the dominant leader in Multichannel Marketing. Don’t just take our word for it — see for yourself. We consistently outperform and continue our leadership, and the results speak for themselves. From day one, Insider’s mission has not been only to build a world-class product company, but also to create one of the most socially progressive technology communities in the world. Through our corporate social responsibility initiatives like 100 Social Responsibility Projects, AI Training for Teachers, Code Academy, SheCodes, SheLeads, and SheMarkables, our community has committed to scaling its impact on our communities across 27+ countries, driving initiatives in health, education, farming, animal rights, and increasing women’s representation in STEM. Behind all these achievements is an exceptionally talented, visionary team of overachievers across 27+ countries that moves fast and agile, creating cutting-edge products, and focuses on making an impact. If you want to be a part of this journey, just keep reading. And now? Now we are looking for a Security Engineer - Red Team who wants to take their career one step further. If you think you are one of those people, here you will have the chance to work with the world's leading brands with Artificial Intelligence & Machine Learning technologies. Right now, while you are reading this, we are sending an average of 2.2 billion requests and almost 2 billion instant notifications to more than 450 servers a day. On the Artificial Intelligence and Predictive side, we have more than 100 TB of historical data. We do not wait for jobs or opportunities to come to our feet, we create them. We have now reached 25% of global users. If all these interests you, read on for more! Our Engineers and Software Developers always think with an innovative perspective, taking advantage of the inexhaustible power of the digital world. They create impressive and intelligent products like a true artist. Our Product and Development teams are located in our Istanbul and Ankara offices, so we produce and develop the technology we export to the world in our own country. As Insider, we believe in cooperation and adapting the innovations brought by technology by acting fast. We work closely with other Departments with agile teams, and we are not afraid of getting our hands dirty. As we said; we do not wait for jobs or opportunities to come to our feet, we create them ourselves. You can check our Tech Stacks here! A Senior Security Engineer Red Team in Insider day in and day out:

performs web, mobile application, and internal penetration test, source code reviews, threat analysis, social-engineering assessments,

supports blue teams when needed

researches new attack vectors and stay current with cybersecurity news and trends,

trains Quality Assurance and Development teams in standard security testing techniques and secure software development.

We want you to join us while we are taking a step into the future if you:

have 4+ years of working experience in web application security,

have hands-on experience in security testing of Web applications, Web service, Mobile applications, APIs, etc.

have experience securing REST APIs and web services,

have experience using and implementing SAST / DAST tools such as Fortify, Veracode, Checkmarx, or other similar tools,

know conducting penetration tests of information systems using commercial and open-source exploitation tools,

have a good understanding of standard security vulnerabilities and common remediation as published by OWASP, SANS, etc.

have experience working with secure coding methodology and best practices and their implementation within engineering teams,

will support developers of our business units in their SDLC and provide guidance regarding mitigations to emerging threats,

will review application source code based on static application security testing tools,

will be engaging in security research to remain current on vulnerabilities and testing tools,

will be creating detailed, professional documentation/reports that clearly communicate vulnerabilities, mitigation strategies, and remediation steps,

have the ability to work on multiple projects concurrently and be committed to providing exemplary customer service,

have strong written and verbal communication skills in English,

have Python, Javascript, PHP programming experience as a plus,

have knowledge in scripting (any language) and experience in automation scripts for application security testing as a plus,

have familiarity with cloud security, particularly AWS Security concepts as a plus,

have certifications of eWAPTx, OSCP, OSWE, etc. as a plus,

are able to work in a team-centric environment,

have strong critical thinking and analytical skills,

have experience in executing white, gray, or black box security posture assessments and complete detailed reports that outline the findings and recommendations,

have strong presentation, written, and oral communication skills.

While exporting our technology to the world, we offer you:

“Tech Talks” with famous and groundbreaking people from the software world, “Dev Talks” where our Software Developers talk about their career steps, and many events where groundbreaking ideas are discussed,

Hackathons we organize inside that push the boundaries, programming challenges, and coding competitions,

Free access to exclusive services such as Laracast, Egghead, LinkedIn Learning, Blinkist, Masterclass, and Spotify

Shareowner System that we offer to all Insiders who meet certain criteria

Inclusive Private Health Insurance

Multinet to cover food expenses covered on a monthly basis

Team Activities that are bursting with fun,

No Dress code! This is a fast and innovative startup, you can wear whatever you want.