Senior Application Security Engineer
ΠΠ°ΠΊΠ°Π½ΡΠΈΡ ΠΈΠ· Hirify Global, ΡΠΏΠΈΡΠΊΠ° ΠΌΠ΅ΠΆΠ΄ΡΠ½Π°ΡΠΎΠ΄Π½ΡΡ
tech-ΠΊΠΎΠΌΠΏΠ°Π½ΠΈΠΉΠΠ»Ρ ΠΌΡΡΡΠ° ΠΈ ΠΎΡΠΊΠ»ΠΈΠΊΠ° Π½ΡΠΆΠ΅Π½ Plus
ΠΡΡΡ & Π‘ΠΎΠΏΡΠΎΠ²ΠΎΠ΄
ΠΠ»Ρ ΠΌΡΡΡΠ° Ρ ΡΡΠΎΠΉ Π²Π°ΠΊΠ°Π½ΡΠΈΠ΅ΠΉ Π½ΡΠΆΠ΅Π½ Plus
ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅ Π²Π°ΠΊΠ°Π½ΡΠΈΠΈ
TL;DR
Senior Application Security Engineer: Embedding security into the development and release processes by partnering with cross-functional teams to ensure security is a foundational part of software design, development, and deployment. Focus on promoting secure coding practices, shift-left methodologies, and the secure adoption of API-driven and AI-enabled technologies.
Location: Lisbon, Portugal
Company
unifies and manages data with AI-powered capabilities, transforming siloed data into unified, trusted, and interoperable data.
What you will do
- Collaborate with development teams to embed security throughout the software development lifecycle (SDLC).
- Implement security controls within CI/CD pipelines, enabling automated security testing and vulnerability detection.
- Drive shift-left initiatives by providing guidance, tooling, and remediation support to engineers, enabling secure development from the outset.
- Analyze and validate remediation of application security findings from SAST, SCA, DAST, API testing, and manual assessments.
- Partner with engineering teams to ensure secure API design and implementation.
- Support secure AI adoption by defining AI security guardrails.
Requirements
- 5+ years of experience in application security or software development, including at least 2 years in a cloud-native or SaaS environment.
- Hands-on experience with secure coding practices and modern application development.
- Strong understanding of cloud well-architected frameworks, application development, and deployment workflows.
- Experience integrating security into CI/CD and release management processes.
- Hands-on experience with web technologies such as Java, Java Spring Boot, JavaScript, Node.js, C#, modern UI frameworks, microservices, cloud-native and serverless architectures.
- Experience with AWS, GCP, and/or Azure.
Nice to have
- Experience securing containerized environments and Kubernetes.
- Experience with Jenkins, ArgoCD, or similar CI/CD tools.
- Hands-on experience with Burp Suite Pro for web and API testing.
- Experience with modern Application Security platforms, with Wiz preferred (other AppSec tools acceptable)
Culture & Benefits
- was founded on a distributed workforce and offers flexible work arrangements to help people manage their personal and professional lives.
ΠΡΠ΄ΡΡΠ΅ ΠΎΡΡΠΎΡΠΎΠΆΠ½Ρ: Π΅ΡΠ»ΠΈ Π²Π°Ρ ΠΏΡΠΎΡΡΡ Π²ΠΎΠΉΡΠΈ Π² iCloud/Google, ΠΏΡΠΈΡΠ»Π°ΡΡ ΠΊΠΎΠ΄/ΠΏΠ°ΡΠΎΠ»Ρ, Π·Π°ΠΏΡΡΡΠΈΡΡ ΠΊΠΎΠ΄/ΠΠ, Π½Π΅ Π΄Π΅Π»Π°ΠΉΡΠ΅ ΡΡΠΎΠ³ΠΎ - ΡΡΠΎ ΠΌΠΎΡΠ΅Π½Π½ΠΈΠΊΠΈ. ΠΠ±ΡΠ·Π°ΡΠ΅Π»ΡΠ½ΠΎ ΠΆΠΌΠΈΡΠ΅ "ΠΠΎΠΆΠ°Π»ΠΎΠ²Π°ΡΡΡΡ" ΠΈΠ»ΠΈ ΠΏΠΈΡΠΈΡΠ΅ Π² ΠΏΠΎΠ΄Π΄Π΅ΡΠΆΠΊΡ. ΠΠΎΠ΄ΡΠΎΠ±Π½Π΅Π΅ Π² Π³Π°ΠΉΠ΄Π΅ β
Π’Π΅ΠΊΡΡ Π²Π°ΠΊΠ°Π½ΡΠΈΠΈ Π²Π·ΡΡ Π±Π΅Π· ΠΈΠ·ΠΌΠ΅Π½Π΅Π½ΠΈΠΉ
ΠΠΎΡ ΠΎΠΆΠΈΠ΅ Π²Π°ΠΊΠ°Π½ΡΠΈΠΈ
Sr. Application Security Engineer (AI/ML, Cloud)
Security Engineer (Cloud/Application)
Senior Application Security Architect (Cybersecurity)
Senior Security Architect (AI)
Senior Security Engineer (Offensive Security)