Plus
Включить Plus
Назад

Эта вакансия в архиве

Посмотреть похожие вакансии ↓
Company hidden
обновлено 2 месяца назад

Senior Application Security Engineer

Формат работы
remote (Global)
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
Portugal

Описание вакансии

Текст:
/

TL;DR

Senior Application Security Engineer: Embedding security into the development and release processes by partnering with cross-functional teams to ensure security is a foundational part of software design, development, and deployment. Focus on promoting secure coding practices, shift-left methodologies, and the secure adoption of API-driven and AI-enabled technologies.

Location: Lisbon, Portugal

Company

hirify.global unifies and manages data with AI-powered capabilities, transforming siloed data into unified, trusted, and interoperable data.

What you will do

  • Collaborate with development teams to embed security throughout the software development lifecycle (SDLC).
  • Implement security controls within CI/CD pipelines, enabling automated security testing and vulnerability detection.
  • Drive shift-left initiatives by providing guidance, tooling, and remediation support to engineers, enabling secure development from the outset.
  • Analyze and validate remediation of application security findings from SAST, SCA, DAST, API testing, and manual assessments.
  • Partner with engineering teams to ensure secure API design and implementation.
  • Support secure AI adoption by defining AI security guardrails.

Requirements

  • 5+ years of experience in application security or software development, including at least 2 years in a cloud-native or SaaS environment.
  • Hands-on experience with secure coding practices and modern application development.
  • Strong understanding of cloud well-architected frameworks, application development, and deployment workflows.
  • Experience integrating security into CI/CD and release management processes.
  • Hands-on experience with web technologies such as Java, Java Spring Boot, JavaScript, Node.js, C#, modern UI frameworks, microservices, cloud-native and serverless architectures.
  • Experience with AWS, GCP, and/or Azure.

Nice to have

  • Experience securing containerized environments and Kubernetes.
  • Experience with Jenkins, ArgoCD, or similar CI/CD tools.
  • Hands-on experience with Burp Suite Pro for web and API testing.
  • Experience with modern Application Security platforms, with Wiz preferred (other AppSec tools acceptable)

Culture & Benefits

  • hirify.global was founded on a distributed workforce and offers flexible work arrangements to help people manage their personal and professional lives.