Application Security Engineer (Cybersecurity)

TL;DR

Application Security Engineer (Cybersecurity): Protecting sensitive health data and ensuring systems are resilient against threats with an accent on building and operating foundational security building blocks and secure-by-default patterns. Focus on enabling developers by making the secure route the most straightforward one, integrating security tooling, and automating security measures.

Location: Anywhere in France, Belgium, or Spain

Company

hirify.global is building a vertically integrated health partner that unites insurance and smart healthcare delivery into one seamless system.

What you will do

• Implement, maintain, and improve static and dynamic analysis tooling integrated into CI/CD pipelines.
• Identify, triage, and drive remediation of vulnerabilities in application code, CI/CD configurations, and third-party dependencies.
• Champion security and privacy in engineering workflows, code reviews, and architecture decisions.
• Foster a habit of threat modeling and rapid risk assessments in product teams.
• Define and enforce security guardrails for AI-assisted coding workflows.

Requirements

• 3+ years in application security, DevSecOps, or security engineering roles.
• Experience building or operating security tooling (SAST, DAST, dependency scanners, secrets detection).
• Ability to script and automate (Python, Bash, or equivalent).
• You love turning security findings into systemic fixes.
• Fluent in English (French is a bonus).

Culture & Benefits

• Work in a team of talented, committed, and passionate engineers with a lot of product interaction.
• Move fast with a lot of ownership and tackle big problems.
• Treat security as an enabler, making the secure route the most straightforward one for developers.
• Prioritize findings by real risk, looking at impact on members and business.
• Build systems, guardrails, policies, and automation that scale beyond your own effort.