Application Security Engineer (Web3)

TL;DR

Application Security Engineer (Web3/Cybersecurity): Ensuring the secure operation of software development and deployment processes with an accent on CI/CD hardening and AI/ML security. Focus on automating security orchestration, performing secure code reviews, and developing AI agents for vulnerability hunting.

Company

hirify.global provides a secure platform and network for companies to work with digital assets, trusted by major global financial institutions and Web3 companies.

What you will do

• Harden CI/CD pipelines and manage security tooling including Snyk and Apiiro to reduce false positives.
• Develop and enforce practical CI/CD security policies in collaboration with cross-functional teams.
• Build automated playbooks and workflows using orchestration platforms like Torq and Semgrep.
• Prioritize security vulnerabilities and integrate essential security controls into the development lifecycle.
• Conduct manual and automated secure code reviews for high-risk components.
• Develop AI agents for code analysis and perform security reviews of AI models and Machine Comprehension Platforms.

Requirements

• At least 5 years of experience in security engineering or application security.
• Hands-on experience with modern CI/CD tools such as GitHub, GitLab, and ArgoCD.
• Proficiency in scripting with Python, NodeJS, or similar languages.
• Basic cloud knowledge, preferably with AWS or Azure.
• Strong understanding of Git workflows and professional code review skills.

Nice to have

• Experience in pentesting or security research.
• Bachelor's degree in Computer Science, Information Security, or a related field.

Culture & Benefits

• Opportunity to own and grow AppSec processes in a collaborative environment.
• Exposure to modern security tools and challenges in scaling security for digital assets.
• Mentorship and professional growth toward senior responsibilities.
• Collaborative culture working alongside experienced security and DevOps professionals.