Senior Application Security Engineer

TL;DR

Senior Application Security Engineer: Designing secure architecture from cloud infrastructure to application level with an accent on implementing secure by design principles and securing CI/CD pipelines. Focus on automating threat modeling, securing microservices, and overseeing cloud migration strategies for high-load platforms.

Location: Must be based in Belgrade, Lisbon, Sofia, Valencia, Warsaw, or Yerevan; relocation support provided.

Salary: €4,000–€6,500/month net

Company

BrainRocket is an international product company developing end-to-end digital solutions across Fintech, iGaming, and Marketing with over 1,300 employees.

What you will do

• Design security architectures for cloud infrastructure and applications following secure-by-design principles.
• Collaborate with product and architecture teams to implement security controls and threat modeling automation.
• Audit and validate security implementations within infrastructure manifests and CI/CD pipelines.
• Oversee product security during migrations from data centers to public cloud environments like AWS.
• Act as a trusted advisor to engineering teams on security best practices and regulatory compliance.

Requirements

• Must be able to relocate from Russia or Belarus.
• Strong experience in securing microservices built with JavaScript and TypeScript.
• Proficiency with CI/CD tools (GitLab, Jenkins) and Infrastructure-as-Code (Terraform, Helm, CloudFormation).
• Hands-on development skills in Python or Shell scripting.
• Deep understanding of supply chain security, software integrity, and secure software delivery.
• Experience with Docker and mesh technologies like ISTIO.

Nice to have

• In-depth experience architecting secure services on Kubernetes and AWS.
• Familiarity with privacy laws like GDPR and industry standards such as PCI, ISO 27001, or NIST.
• Professional security certifications (CISSP, CISM, CCSK, CCSP, CEH).

Culture & Benefits

• Global coverage health insurance.
• 23 working days of annual vacation plus paid sick leave.
• Relocation package including tickets, hotel accommodation for up to 2 weeks, and visa support for the employee and family.
• Opportunities for professional development and language skills enhancement.
• Annual remuneration reviews and regular teambuilding activities.