Application Security Engineer

Work with HelloFresh in Warsaw and its HelloTech organisation, HelloFresh’s global technology backbone with more than 1000 people, building the digital products that power our end-to-end food experience. From meal kits and ready-to-eat meals to specialty offerings like pet food and premium meat & seafood, HelloTech creates the platforms that bring tailored food solutions to millions of customers every month. Our subscription-based, direct-to-consumer model relies on technology at every step, from customer-facing apps and personalization logic to pricing, forecasting, supply chain optimization, and initiatives that help reduce food waste. While our brands operate independently to serve distinct customer needs, they are united by shared platforms, data, and operational excellence built by HelloTech. HelloTech works in autonomous, cross-functional alliances, each owning a specific product or domain end to end. By working with our Warsaw office, you will help shape scalable, data-driven products used across our markets, working with a modern tech stack and international teams to continuously improve how people discover, order, and enjoy HelloFresh’s products, today and in the future.

About the role: What's in the Box

The service provider will collaborate with the HelloTech security organization to ensure HelloFresh remains a trusted global brand. This engagement focuses on the maintenance and iteration of the Vulnerability Management Program, providing comprehensive coverage across Penetration Testing, Red Teaming, Cloud Assessments, Source Code Reviews, and Bug Bounty initiatives. As an external expert, the contractor will deliver specialized offensive security services to identify risks and strengthen the organization's defensive posture.

What you’ll do: The Recipe

Perform network and cloud penetration testing, web and mobile application security assessments, and source code reviews.

Conduct specialized threat analysis, wireless network assessments, and social-en