O pozici
Wrike is the most powerful work management platform. Built for teams and organizations looking to collaborate, create, and exceed every day, Wrike brings everyone and all work into a single place to remove complexity, increase productivity, and free people up to focus on their most purposeful work.
Our vision: A world where everyone is free to focus on their most purposeful work, together.
Co budeš dělat
- Own recurring Application Security activities for multiple product teams, including secure design reviews, threat modeling, code review, testing validation, and remediation guidance.
- Assess vulnerabilities and findings from scanners, testing, bug reports, and internal reviews; distinguish meaningful risk from noise and help teams focus on the most important issues.
- Validate security fixes and recommend compensating controls or practical alternatives when ideal remediation is not immediately possible.
- Improve day-to-day AppSec workflows by tuning checks, refining rules, improving triage quality, and integrating security more effectively into developer workflows and CI/CD pipelines.
- Help engineers understand security findings in practical product terms by providing clear prioritization and actionable remediation guidance.
- Contribute to secure-by-default development practices by reinforcing standards, reference patterns, and review expectations.
- Use structured AI workflows to support complex AppSec analysis, such as broader codebase review, design decomposition, review preparation, and documentation synthesis, while maintaining clear guardrails around prompt and context hygiene, human oversight, and output quality.
Koho hledáme
- Strong hands-on knowledge of common web and API security issues, authentication and session management concepts, secrets handling, and secure coding fundamentals.
- Proven experience conducting secure code reviews in modern engineering environments, especially in Java, TypeScript, and PHP, with the ability to clearly explain security flaws and collaborate on effective remediation.
- Experience leading or facilitating routine threat modeling for product features or services and translating outcomes into actionable security requirements.
- Experience managing Application Security tools such as SAST, SCA, DAST, and secrets scanning solutions, as well as bug bounty platforms, with a focus on CI/CD integration, false positive reduction, and signal quality improvement.
- Working knowledge of OAuth/OIDC, service-to-service authentication, secrets management, and foundational cloud or container security concepts.
- Ability to prioritize findings based on exploitability, exposure, business impact, and remediation effort rather than relying on severity labels alone.
- Strong written and verbal communication skills, with the ability to work effectively with engineers, technical leads, and product stakeholders.
- Sound judgment when using AI-assisted workflows, treating AI as a copilot rather than an authority and validating correctness, exploitability, and business context before taking action.
Benefity
- 💚 Dedicated: We get up every day focused on helping our customers win. We’re committed to helping our teammates win, too!
- 🤗 Approachable: We're friendly, easy to get along with, considerate, and helpful.
- 🤩 Customer-Focused
We care about our customers. We understand the customer journey, experience, and value derived from Wrike. Decision-making and action-taking are done with the customer in mind.
- 🤝 Collaborative
We work as one and win together, each bringing unique strengths that contribute to diversity of thought for better outcomes. Leveraging our own work management platform, we foster an environment of creative collaboration and shared achievement.
- 🎨 Creative
We strive to succeed through continuous innovation. It’s our pursuit of novel concepts that helped us create a market category. We continue to cultivate a workplace that fosters creative thinking as a means of transcending conventional boundaries and empowers us to break new ground to deliver extraordinary work management solutions.
- 💪 Committed
We believe in ownership at all levels of the organization, by owning workflows from start to finish. Each member of our team is an integral part of this commitment, establishing work as a platform for personal growth and transformation, as well as collective success and growth.
