Application Security Engineer

The Open Platform (TOP) is the leading tech company developing Web3 innovations in Telegram. TOP is fueling the Telegram economy through both foundational infrastructure and consumer-facing apps. By integrating blockchain technology into day-to-day digital activities, TOP is building a seamless, scalable platform designed for a billion users — accelerating the mass adoption of crypto.

TOP provides a powerful toolkit of funding, expertise, and technology resources, streamlining access to critical tools like wallets, developer resources, SDKs, APIs, and marketplaces. TOP also develops and supports leading ecosystem products including the Wallet in Telegram, Tonkeeper, STON.fi, Getgems, Tribute, and more.

We are currently looking for a Application Security Engineer to join our team.

This role includes conducting regular code audits, vulnerability testing, and implementing best practices for secure software development. As an AppSec Engineer, you will be critical in safeguarding our applications from potential threats, ensuring that our products remain secure and reliable in the face of growing cybersecurity challenges.

Responsibilities:

• Perform security audits and code reviews to identify vulnerabilities in our applications.
• Implement security measures to protect applications from threats such as SQL injection, cross-site scripting (XSS), and other common vulnerabilities.
• Work closely with developers to provide guidance on secure coding practices.
• Develop and maintain security tools and frameworks for automated security testing.
• Monitor security trends and emerging threats, and proactively adjust security strategies.

Requirements:

• Extensive experience in application security, with a strong understanding of software development processes.
• Proficiency in secure coding practices and experience with languages such as Python, Kotlin, or JavaScript.
• Experience with security tools such as static and dynamic analysis tools (SAST/DAST).
• Strong knowledge of common vulnerabilities (OWASP Top 10) and how to protect against them.
• Experience in the crypto space is a plus.

Why it is a fantastic opportunity:

• Our business is growing at an exponential scale.

• Non-bureaucratic management that focuses on results.

• Regular performance reviews to assess your progress.

• Remote setup with access to our hubs in Dubai, Yerevan, London and Belgrade.

• Compensation for medical expenses.

• 28 calendar days of paid vacation annually.

• 14 days of paid sick leave to support your health and recovery when needed.

• Access to internal conferences, English courses and corporate events.