Bentley Systems (Nasdaq: BSY) is the infrastructure engineering software company. We provide innovative software to advance the world’s infrastructure – sustaining both the global economy and environment. Our industry-leading software solutions are used by professionals, and organizations of every size, for the design, construction, and operations of roads and bridges, rail and transit, water and wastewater, public works and utilities, buildings and campuses, and industrial facilities. Our offerings include MicroStation-based applications for modeling and simulation, ProjectWise for project delivery, AssetWise for asset and network performance, and the iTwin platform for infrastructure digital twins. Bentley Systems employs more than 4,000 colleagues and generates annual revenues of more than $800 million, in 172 countries. www.bentley.com

Application Security Analyst (Defender / Blue Team / DevSecOps)

The candidate will be part of a dedicated software security team (AppSec) at Bentley Systems. The principal responsibility of the AppSec team is to secure Bentley’s code. This includes a wide variety of technologies: C#, JavaScript, Node.js, single-page applications and Electron applications, Azure cloud services, Javascript web applications, and more. The successful candidate will have the opportunity to learn skills such as cloud, Agile, Dev(Sec)Ops, etc. and will work as part of a multinational, diverse team of remotely placed experts.

Location: Vilnius/Kaunas

Responsibilities

• Review and consultation with the development teams to produce secure software.
• Automation of security in build and deployment pipeline (DevSecOps)
• Identify vulnerabilities and define mitigations.
• Research security topics and create best practices.
• Develop automations and internal tools
• Coordinate with a network of security champions to improve the security of our products.

Required Skills

• Strong interest in software security and software development.
• Training in computer science, software engineering or related fields or equivalent experience.
• 0-10 years of development or security experience.
• Methodical and detail-oriented, but also curious enough to investigate anomalies when warranted.
• Strong problem-solving capabilities using various technologies.

Desired Skills

• Knowledge of web technologies (JavaScript, HTML5, HTTP, REST, SOAP, etc.)
• Experience with web security or debugging tools (ex: capture with Fiddler, Wireshark, etc)
• Good knowledge of some of the following programming languages: C++, C# or Typescript
• Knowledge of OWASP Top10 or SANS Top 25
• Experience with pentesting tools like Burp Suite Pro, OWASP Zed Attack Proxy
• Experience with exploit code creation for web and native (C/C++) vulnerabilities

What We Offer:

• Competitive salary and benefits.
• Being an integral part of a world-leading software company providing solutions for architecture, engineering and construction.
• The opportunity to work within a global and diversely international team.
• A supportive and collaborative environment.
• Colleague Recognition Awards

Please note if you are employed full-time salary for this position ranges from 4000 EUR gross (before taxes).

#LI-LM1

Bentley is proud to be an equal opportunity employer and considers for employment all qualified applicants without regard to race, color, gender/gender identity, sexual orientation, disability, marital status, religion/belief, national origin, caste, age, or any other characteristic protected by local law or unrelated to job qualifications.