Application Security Engineer

Формат работы

hybrid

Тип работы

fulltime

Грейд

middle/senior

Английский

Вакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:

TL;DR

Application Security Engineer: Ensuring the security of software applications by design and resilience against evolving threats with an accent on embedding security throughout the SSDLC and driving secure coding practices. Focus on threat modeling, architecture reviews, and collaborating with development, DevOps, and product teams.

Location: Candidates who reside within 45 miles of one of hirify.global offices will follow hybrid work model, this includes working onsite three days per week and remotely the remaining days.

Company

hirify.global is a global team on the front lines of cybersecurity innovation.

What you will do

Conduct security assessments, penetration tests, and code reviews across web, mobile, and cloud applications.
Integrate security tools (SAST, DAST, SCA) into CI/CD pipelines using platforms like Azure DevOps, GitHub Actions.
Design and enforce secure coding standards and SSDLC policies.
Collaborate with developers to remediate vulnerabilities and provide inline guidance during PR reviews.
Lead threat modeling and architecture reviews for new features and services.
Participate in incident response and forensic analysis for application-related security events.

Requirements

3+ years of experience in application security or related fields.
Strong understanding of secure development practices, cryptography, and vulnerability management.
Familiarity with tools like CodeQL, GitHub Advanced Security, and container image scanning platforms.
Experience with cloud platforms (Azure preferred), microservices, and containerized environments.
Knowledge of authentication protocols (OAuth 2.0, OIDC), RBAC, and VPN architecture.
Excellent communication skills and ability to work cross-functionally.

Nice to have

Ability to lead security initiatives and influence engineering culture.
Experience with implementing enterprise security solutions.
Experience with Splunk or Microsoft Sentinel.

Culture & Benefits

Celebrate curiosity, integrity, and people who take initiative.
Embrace challenges as growth opportunities.
Value a healthy balance between work and life.

Будьте осторожны: если вас просят войти в iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →