Application Security Engineer (Cybersecurity)

TL;DR

Application Security Engineer (Cybersecurity): Securing the application ecosystem, with an accent on APIs, integrations, and cloud-based systems. Focus on identifying, analyzing, and mitigating security risks, designing secure integrations, and contributing to continuous improvement of application security practices.

Location: Hybrid in Israel

Company

hirify.global helps modern, mid-size businesses transform the way they manage people with an intuitive, data-driven HR platform, serving over 5,000 companies globally.

What you will do

• Design, assess, and improve the security of application-level integrations, including APIs, webhooks, and SFTP-based data flows.
• Act as a subject matter expert for complex integration and application security issues, supporting high-impact customers and strategic partners.
• Investigate and resolve security and data inquiries using logs, SQL queries, and debugging tools.
• Collaborate closely with Development and Product teams on security-related bugs, architectural decisions, and product roadmap discussions.
• Review and troubleshoot integration flows involving AWS services and third-party systems, with a focus on secure design and implementation.
• Contribute to the continuous improvement of application security practices, processes, and tooling.

Requirements

• 3+ years of experience as an application engineer, security engineer, or in related positions.
• Strong hands-on experience with REST APIs, webhooks, and integration-based architectures.
• Experience working with cloud environments, preferably AWS.
• Solid understanding of application-layer security concepts, including authentication, authorization, and data protection.
• Experience analyzing logs, executing SQL queries, and using developer tools to troubleshoot complex application issues.
• Proven ability to work cross-functionally with Engineering, Product, and customer-facing teams.

Nice to have

• Experience supporting large-scale SaaS platforms with numerous third-party integrations.
• Understanding of secure code and CI/CD security.
• Understanding of secure integration patterns and common API security risks.

Culture & Benefits

• Flexible hybrid working model.
• Company share options plan and pre-IPO equity.
• Work from home allowance, payment for sick leave from the first day.
• Annual Headspace subscription and wellness benefits.
• Temporary remote work from anywhere in the world for up to 2 months (after 6 months of employment).
• Fun company and team social events and 4 additional Bob balance days per year.