Mid-Senior Application Security Engineer - Remote Opportunities

About the Role

As an Application Security Engineer, your main responsibility will be to work within our team to safeguard the organization's information assets. This role offers a unique opportunity to integrate security into the software development lifecycle (SDLC), collaborating closely with Developers, DevOps, and other teams to ensure our applications are built, deployed, and maintained with security at the core. This Application Security Engineer remote position allows you to contribute to a dynamic and innovative environment.

What You'll Do

• Work closely with other security engineers, analysts, and specialists to strengthen security processes and controls across our platforms.
• Plan, design, implement, and monitor security controls for CI/CD pipelines, vulnerability management, applications, APIs, and Kubernetes clusters.
• Automate security testing and integrate it seamlessly into CI/CD pipelines.
• Use Infrastructure as Code (IaC) and custom solutions to provision and automate security tooling in containerized environments.
• Act as a security advocate, guiding development teams and promoting secure coding practices.
• Conduct threat modeling, application security testing, and vulnerability assessments to identify and resolve security weaknesses.
• Participate in incident response activities and help improve resilience.
• Create and maintain clear documentation for security implementations and procedures.

Requirements

• Experience in Application Security Engineering, DevOps, Software Development, or related roles.
• Strong knowledge of SAST/DAST/SCA, API Security, and Threat Modeling.
• Solid understanding of Kubernetes, containerization, and CI/CD pipelines.
• Good grasp of security architecture in microservices environments.
• Programming or scripting skills in at least one language (Python, Bash, Golang).
• University degree in IT or related field, or equivalent professional experience.
• Excellent spoken and written English skills.
• Security mindset with strong communication, problem-solving, and analytical skills.

Nice to Have

• Familiarity with Node.js/React frameworks.
• Experience with CNAPP tools, IaC, GitOps, and automation.
• Penetration testing knowledge/experience.

What We Offer

• 28 days of vacation with flexible working hours.
• Monthly sports/health compensation and full sick leave coverage for the first 8 days.
• Access to an in-house gym and a chill games room.
• Generous Supplemental Training Program for professional growth.
• Comprehensive relocation support for a smooth transition.
• A cozy, dog-friendly office environment with complimentary fruits and beverages.
• Opportunities to participate in legendary company events.
• A diverse and multicultural team environment.