Oh oh! Awesome! {$ msg.text $} ({$ msg.count $})

Software Engineer focused on security

  • Application Deadline: Jan. 23, 2022
  • Oslo
  • Application Deadline: Jan. 23, 2022
  • Oslo

Are you a Software Engineer with a passion for security? Do you want to be part of one of the biggest in-house tech-communities? Then continue reading!

FINN.no is visited by more than 2 million unique visitors every week, and our marketplace is built and run by over 180 engineers. These engineers deploy production changes to our 850+ applications running in Kubernetes on Google Cloud Platform over 1800 times per week. We move fast and have a diverse and modern technology stack, which means we have many unique security engineering challenges.

We are looking for a software engineer with a passion for security to join our growing Security Engineering team. This team works across all engineering teams in FINN, providing guidance and help in all the phases of the DevOps lifecycle. Our goal is to enable other teams to ship new features securely and fast. This can be a challenge when we have thousands of production deployments per week, and we believe in using and building tools that give us high-quality results that do not block teams. To scale this, we are looking to automate the tools we have to build security into our platform and create secure defaults so that all teams can get security wins. This means that the security engineering team is working on both securing application code and infrastructure.

Who are you?

The ideal candidate has both application security expertise and development experience. You are passionate about building secure software and infrastructure, and more importantly, you are someone who makes things happen and accepts responsibility for results. You cooperate well with others and gladly share knowledge and information, and you are skilled in understanding the needs of different groups.

What you will be up to

  • Use and automate the tools we acquire, making them self-service for developers.
  • Help developers understand bug classes and how they can fix them.
  • Enabling secure defaults by contributing with code on tools, libraries and infrastructure.
  • Run and scale security activities in our DevSecOps lifecycle, including but not limited to threat modeling, code scanning, web app scanning, threat detection.
  • Run and evolve our private bug bounty program.
  • Follow up on reported vulnerabilities.
  • Provide subject matter expertise on topics such as secure design, security controls, programming practices, encryption, web security standards.

    Some of the skills we are looking for

  • Good knowledge about vulnerability classes

  • Strong background in software development (Our dev teams are mostly JVM/Javascript based, but we have a lot of other languages used in-house from Python, Go to Haskell)

  • Experience with Kubernetes and cloud providers, preferably Google Cloud Platform.

  • Deep understanding of industry security standards including but not limited to OWASP frameworks, Web security standards, Authentication and Authorization standards, and more.
  • Collaborate with engineering teams and provide guidance on security topics.

Work with great people

Mathias J. Johansen
Utvikler FINN Reise
"Her er det takhøyde og muligheter til å utvikle deg etter dine egne behov og ønsker."
Siddise Hirpa
Utvikler A-caser
"Her får du både jobbet selvstendig og sammen med folk som inspirerer deg!"
Camilla Røhme
UX Architect
"Sammen skaper vi løsninger som hjelper og begeistrer!"
Anders Halvorsen
Salgssjef
"Det beste med denne jobben er de gangene du føler at du faktisk hjelper noen med å løse et faktisk problem"

Skills & Requirements

What we can offer

We offer everyone at FINN varied and exciting tasks, and you will meet skilled colleagues in a warm and inclusive work-environment. None of us are fully trained, so you will always have opportunities for relevant competence-development. But the most important advantage of working at FINN is that you get to work with something that means something to a lot of people!

We offer competitive compensation and a bunch of cool benefits, like fun educational trips to build spirit and create good experiences (where more than 80% of our employees sign up), great cabins at Trysil and Aftenposten-subscription (paper/digital). We focus on our employees’ health with (among other things) weekly SATS training, improvement of cross-country skiing technique in the winter and massages in the office. We also enjoy inviting people home for educational evenings and ‘after work’ at FINN.

At FINN we believe in flexible working hours, a good work-life balance and the option to have home office 1-3 days a week.

NB: It is also worth mentioning that we have a group of hard core gamers, and that we have our own CS:GO-team. You are very welcome to join!

More about FINN tech and the way we work

One of FINN's absolute strengths is that we have a strong in-house engineering community, with over 30 autonomous teams.

Developers in FINN have the competitive advantage of being able to quickly launch new products, redesign their portfolio, effortlessly release to production, scale deployments up and down, watch and search logs, and make dashboards.

We probably take some things for granted in FINN, but we are proud of the fact that we do a lot of the things other companies only talk about doing, like:

  • Be a 100% cloud-based company

  • Running all applications in Kubernetes

  • To effortlessly release 200 application changes to production every day

  • Having thousands of applications communicating near real time over a pub sub bus

  • “Going microservices”

  • Running a private bug bounty program


Are you interested?

We would love to hear from you! You can apply by sending us your CV or the URL to your LinkedIn-profile and answering the questions in the application form. Applications will be reviewed consecutively throughout the application period.

Do you have questions about the role or the team? Please contact Halvor Igesund ([email protected]).

Great Place to Work

  • Varierte og spennende arbeidsoppgaver

  • Dyktige kollegaer og et hyggelig arbeidsmiljø

  • Konkurransedyktige vilkår

  • Gode muligheter for kompetanseutvikling

  • Avis - Aftenposten hjem på døra og/eller digitalt

  • Fleksibel arbeidstid

  • Rabattavtaler gjennom FINN og Schibsted

  • Hybrid arbeids hverdag

About the company

FINN.who?

FINN.no is one of the largest tech companies in Norway. With close to 200 developers we create one of the largest websites and two of the most popular apps in Norway. At FINN you will work in a professional and inspiring environment where opportunities and personal growth are key and the team spirit is high.

We enjoy working here, but we also know that life is more than a job. Therefore, It is important to us to create a good work life balance. We do so by offering flexible working hours among other benefits. If you want to spend more time with your colleagues we also offer several smaller social get togethers and activities. How about a skiing course? Golf lessons? Or taking your kids to a Christmas workshop?

We believe we have the best working environment of all times! During the pandemic we have been able to keep our unity with regular digital events (quizes and other games) and meeting outside for a picnic, cake or other goodies when possible. Also, we have embraced the hybrid work-life and offer a mix of office-office and home-office to all our teams - of course with the equipment you should need in order to ensure your comfort and health.

You can read more about our culture and what we can offer on our career page. We believe sharing is caring, so check out our presentations we have held on tech conferences like JavaZone and we also share open source code in Github.

Lastly, you can also find us on social media: Instagram, Twitter, Facebook & LinkedIn and read more on our Tech Blog.


Halvor Igesund | Contact Person

I'm interested