Application Security Specialist

Ready to join the fastest-growing tech company in the Netherlands?

In 2023 we received the prestigious Oryx Award 2023 by the Dutch Financial Newspaper (FD), for the company with the most exceptional growth performance. We were awarded 1st place by the Deloitte Fast 50 award in 2019 for growth and innovation, 7th place in 2020. We’ve continued our strong growth during and after Covid times, and have ambitious plans for the future. Now, we are looking for a driven and skilled Application Security Specialist to join our team to further conceptualize and execute our growth ambition.

About Experiencegift

Experiencegift is home to Hotelgift, Flightgift, Traingift and Activitygift. Our gift cards can be redeemed for over 750,000 hotels, 400 airlines, 50,000 activities worldwide and train journeys all across Europe. We believe in experiences over things. Our mission is to enable our customers to spread joy by giving the gift of experiences that can be redeemed whenever, wherever. As we sell in over 50 countries worldwide, we’ve built a diverse team of over 50 colleagues and more than 15 nationalities. We have subsidiaries in Amsterdam, London, Athens, and New York.

What makes the role so great?

As our Application Security Specialist, you'll be at the forefront of safeguarding our innovative services, including those leveraging cutting-edge LLMs. You will champion secure development practices, proactively identify and neutralize threats in our applications, and cultivate a security-first mindset across our engineering teams. This is a chance to build and lead our application security strategy in a dynamic environment aiming to 'reinvent travelling.

Required skills

• API Security Principles: Deep understanding of common vulnerabilities (e.g., OWASP API Security Top 10) and robust mitigation strategies.

• Rate Limiting & Quota Systems: Expertise in designing and implementing advanced rate limiting and usage quotas, tailored to protect LLM resources.

• Authentication & Authorization: Solid understanding and implementation experience with API authentication/authorization standards (e.g., JWT, OAuth 2.0) and secure API key management.

• Bot Detection & Mitigation: Experience with identifying and blocking malicious automated traffic targeting APIs.

• Traffic Management Technologies: Familiarity with Web Application Firewalls (WAFs) and API Gateways.

• LLM-Specific Abuse Prevention: Knowledge of techniques to secure LLM interactions, including prompt validation, cost monitoring, and preventing resource exhaustion attacks.

• Fluency in English

Who are you?

• Passionate & curious: You love backend development, and you enjoy learning and experimenting

• Problem-solving: You are not afraid of challenges, and you are able to utilise the proper means to find solutions

• Collaborative: Ability to work effectively in a team and independently with minimal supervision

• Detail-oriented: You pay attention to the detail, ensuring every design implementation feels just right
  

What can you expect from us?

• Opportunity for significant and fast impact

• Freedom to come up with new ideas and initiatives

• Lots of learning and development opportunities

• Salary reflective of skills and experience and performance-based bonus potential

• High-end new laptop

• Lunch and snacks provided

• after-work and monthly events

• Awesome annual trip abroad with the entire company

• Young, friendly, ambitious, international team in Amsterdam, Athens, Cairo and London

This is a full-time job (40H/week) based in Amsterdam or Athens and is available as soon as possible.

At Experiencegift we offer you the opportunity to work in a scale-up culture where everything you do matters. In our team, you will have the freedom to experiment and evolve your own projects. You will be part of an international, driven, award-winning team and will gain experience in a very fast-growing scale-up environment. By providing a creative, dynamic, and innovative environment, we empower our people for unlimited success.

Ready to make a real impact in a thriving company? Apply directly here or visit our career page for more details. We are looking forward to meeting you!

No agencies please, we manage our recruitment processes internally.