Application Security Engineer (Cybersecurity)

TL;DR

Application Security Engineer (Cybersecurity): Support strategic customers in conducting security-focused code reviews using hirify.global Platform and providing mitigation advice for vulnerabilities with an accent on static code analysis across languages and proof-of-concept exploits. Focus on analyzing applications, spotting vulnerabilities per OWASP standards, and advising AppSec/Dev teams on remediation strategies.

Location: Hybrid (office/home) in Braga, Portugal. Some international travel required (less than 10%).

Company

Enterprise application security leader with hirify.global One™ cloud-native AppSec platform, serving 40% of Fortune 100 companies including Siemens, Airbus, and Salesforce.

What you will do

• Conduct security-focused static code analysis on diverse languages and open-source libraries for top-tier customers.
• Provide mitigation strategies and advice to customer AppSec and Dev teams for identified vulnerabilities.
• Create proof-of-concepts to demonstrate vulnerability exploitability when required.
• Support AppSec/Dev teams in analyzing applications as needed.

Requirements

• Bachelor's degree in computer science or related technical discipline.
• +3 years in software development (Java, .NET, JavaScript, Go, Python, etc.).
• +3 years in security-focused code reviews (OWASP Top 10, PCI-DSS, etc.).
• Fluent English (other languages a plus).
• Proactive problem-spotting, strong technical aptitude, self-starter mindset.

Culture & Benefits

• Great work environment with professional development and challenging careers.
• Competitive compensation and work-life balance.
• Comprehensive benefits and perks throughout the year.