Product Development: Req 4865—Security Engineer (Brno)

Why NetSuite?
Picture yourself building a successful career at NetSuite—working alongside other talented, driven individuals to help fast-growing mid-size organizations and larger enterprises achieve their business goals with the world's #1 cloud-based business management suite for ERP/financials, CRM, ecommerce and more.

Founded in 1998 by Oracle CEO Larry Ellison and NetSuite CTO and Chairman Evan Goldberg, NetSuite (NYSE: N) is used by more than 16,000 companies and subsidiaries to run mission-critical operations without the high capital costs and inefficiency of antiquated client/server systems. Named by Gartner as the world's fastest-growing financial management vendor and winner of a prestigious 2011 CODiE award for Best Financial Management Solution, NetSuite is where business is going.

If you'd like to join our dynamic, driven and fun team, click on the Apply Now button below.

The security engineer will focus on testing Security API used by NetSuite developers, auditing the NetSuite source code, using static source code analysis and penetration tools to identify the security issues in the NetSuite source code, and reporting security issues.

This is a security detail oriented job. You must be willing and able to focus on every security aspect of the NetSuite source code, and be uncompromising on less secure code.


  • Design and implement Java unit tests to test Security API
  • Use static source code analysis tools to analyze security issues in the application code
  • Use penetration tools to conduct penetration testing
  • Identify, reproduce, and report security issues
  • Review security fixes
  • Maintain and run security analysis tools

Must have:

  • B.S. in Computer Science
  • Strong interest in software security
  • Strong ethics and understanding of ethics in information security
  • Capability of working independently when needed
  • Ability to efficiently manage multiple tasks
  • Excellent communication skills in both English and Czech

Desired skills:

  • 2–4 years Java experience
  • 1–3 years experience with SQL
  • Understanding of HTTP and web programming
  • Good understanding of security issues such as SQL injection, XSS, and related security vulnerability patterns
  • Experience with static source code analysis tools
  • Experience with Linux and scripting languages
  • Experience with software quality and unit testing methodologies