Why CRED’s Polish Team? 

CRED is a members-only app that offers exclusive rewards for paying bills by credit card. CRED app has 14 million members, 8+ million Monthly Active Users. It is a top global fin-tech startup.

CRED has one of the best technical working environments for tech talents to flourish and it has business results to prove it with over 900 million USD in investment and over 4 billion USD valuation.

When you join CRED’s Polish Team your technical talents will be challenged to design and develop cutting-edge technology solutions from scratch which will be a vital part of CRED’s existing business that already processes millions of transactions and terabytes of data daily. You will work on a totally new social app that will become a part of CRED’s ecosystem. 

CRED Polish Team is an independent, vital extension of existing 200+ IT engineers, which is a sweet spot for accelerating your career as the organization is big enough to give you all the perks of the most prominent players in IT sector while still having a dynamic startup environment with a lot of individual freedom and new job opportunities appearing in CRED every week.

Working at CRED would instantly make you realize one thing: you are working with the best talent around you. We are building the first team in Poland, 100% remote

Getting started: ASAP

We offer:

● Attractive salary depending on skills and experience (B2B: 20% above the market average. Preferred salary payment in dollars.)

● Working with a completely new product

● Tutoring and inside-organization training

● 26 days of fully paid leave of absence

Tools used:

● Collaboration: Slack

● Source repositories: Git

● Databases: MySQL, PostgreSQL

● Containers: Docker, Kubernetes

● Cloud services: AWS

Task / Responsibilities:

● Perform security assessments of web applications, Android, iOS mobile applications.

● Exploit security flaws and vulnerabilities with Proof of Concept (POC) on multiple application platforms like the Web, Android, and iOS.

● Ability to conduct black box/white box penetration tests.

● Research emerging technologies and maintain awareness of the latest security risks.

● Closely work with product and engineering teams across the organization to understand and secure new product features by involving right from the design walkthrough to full code review.

● Proactively test and identify vulnerabilities across our platform and recommend fixes.

● Identify automation opportunities and develop new tools to automate security test cases.

● Ability to conduct code reviews and provide advice on secure product design

Requirements:

● 3-5 years of experience in Application Security

● In-depth understanding of security vulnerabilities in Web, Android and iOS.

● Experience in doing security assessments on Microservice Architecture

● A go-to person attitude with ability to communicate effectively with stakeholders

(engineers, product, business teams) on anything related to Application Security

● Familiar experience in automation and scripting

● Good communication in English (at least B2 level)

● Good interpersonal and communication skills (ability to work in a team)

● "Nothing is impossible" approach to problem-solving

Recruitment stages:

1. Exploratory call (introduction and set context)

2. Technical Round - you’ll be asked questions about your experience with penetration testing

(how you prepare documentation and test scenarios, understand how different systems work

together) and how you understand the product that you worked with.

3. Problem solving - practical round, you’ll be asked to perform penetration tests on the

environment prepared in advance.

4. Cultural round - conversation about your previous experience, approaching challenges in

everyday work and organization culture.

5. Decision + final negotiations

The Polish team recruitment coordinator for the CRED company is Funmedia sp. z o.o. from Wrocław.