Build your career on Magnet.me
Create a profile and receive smart job recommendations based on your liked jobs.
At bol, you can make our customers happy by going on the offensive to make the platform safer for customers and partners as a Senior Offensive Security Engineer.
By wielding the sharpest digital swords in your arsenal and stealthily hacking away at anything and everything that stands between you and the prize: sneaky, backdoor entry. đ Obviously, you do this without nefarious intent, you own an impressive collection of stylish hats, and theyâre all #FFFFFF, and you immediately share your methods and findings with the team so appropriate action can be taken and any holes can be closed. In short: you go on the offensive to make the platform safer for customers and partners.
As an Ethical Hacker, you use your offensive prowess to attack the platform through penetration testing on request, for example for product teams, and on your own initiative. You prioritize actions based on risk, with high-risk threats taking precedence over lower-risk issues. Your responsibilities include reviewing technical designs and ideas, running âbreaking stuff on paperâ sessions, performing vulnerability assessments of applications, systems, and networks, and threat modeling to help product teams assess risks in their own solutions. Plus anything and everything else that needs doing, but nobody thought to mention.
Youâll join the Security Operations team of hackers, defenders, and âif itâs fixable, consider it doneâ problem solvers. It is a team where red and blue specialists work together as a purple squad to keep the bol.com platform safe and secure.
The team builds and runs security solutions across the entire bol.com landscape, including customer and partner-facing platforms, office solutions, cloud environments, and the logistical ecosystems that keep fulfillment centers humming and parcels moving.
You will work with two direct colleagues and six blue team security engineers. In addition to hacking and engineering, the team is responsible for security incident management, maintaining oversight of bol.comâs overall security position across systems and data, and delivering major security projects.
Because youâre an accomplished ethical hacker and penetration tester with a deep understanding of internet-facing web applications and cloud-native environments. You are as adept at quick assessments as you are at conducting in-depth penetration tests, and you know when each approach works best.
Experience in large engineering-driven environments, where open-source tooling is often preferred, is essential. At bol.com, most solutions are ideated and built in-house, while leveraging existing libraries and frameworks, so that environment should appeal to you.
You are also expected to be available to software engineers when they have security questions and to step up when a security alert breaks the silence. Familiarity with Linux, Tomcat, Java, and Spring microservices is a major asset. In the cloud, bol.com runs native infrastructure on GCP, including Kubernetes.
Not a fit if
At one of the best-known online retail tech platforms in the Netherlands and Belgium. A platform where roughly 13 million customers can choose from around 38 million articles and where about 49,000 commercial partners run their businesses.
Teams work in a multidisciplinary way and aim to enable and empower teams and individuals alike. The guiding principles are job roles over job titles, autonomy, trust, and ownership.
Bij bol leveren onze collegaâs een unieke bijdrage om het dagelijks leven makkelijker te maken. Vrijheid en verantwoordelijkheid zorgen ervoor dat we samen de volgende stap voor bol, het team, en onszelf kunnen vormgeven. Door te pionieren brengen we bol verder, met elkaar zijn wij verantwoordelijk voor deze gezamenlijke missie.
View what's on offer:
Change language to: Dutch
This page is optimised for people from the Netherlands. View the version optimised for people from the UK.