Junior Associate Director, IT, Application Security Engineer (Fintech)

TL;DR

Junior Associate Director, IT, Application Security Engineer (Fintech): Enhancing application and infrastructure security by implementing preventative controls and identifying risks through security testing with an accent on automation and purple teaming. Focus on implementing SAST/DAST/SCA tooling, conducting threat modeling, and providing remediation guidance to engineering teams.

Location: Hybrid in Limassol, Cyprus

Company

hirify.global is a global provider of asset servicing and operational solutions for public and private funds, operating as a division of Mitsubishi UFJ Financial Group.

What you will do

• Implement and manage SAST/SCA tooling and scale automated DAST solutions across application repositories.
• Conduct threat modeling and review application architectures to identify risks early in the SDLC.
• Perform penetration testing on internal applications and assess the security of third-party vendor applications.
• Act as a security champion to foster a secure-by-design approach across the business.
• Coordinate external penetration testing assessments and validate remediation of security issues.
• Collaborate closely with development and IT teams to provide security guidance and resolve vulnerabilities.

Requirements

• Experience in application security focusing on red, blue, or purple team activities.
• Background in software development or contributions to Open-Source projects.
• Proficiency in one or more languages: Python, JavaScript, .NET, or Java.
• Experience with DAST tools (Burp Suite, OWASP Zap) and SAST/SCA tools (Snyk, Veracode, Checkmarx).
• Strong understanding of REST and GraphQL API testing.
• Experience with GitLab/GitHub, Docker, Jira, and agile SDLC methodologies.

Nice to have

• Experience in the financial sector or other heavily audited industries.
• Knowledge of AWS services (WAF, Cognito, etc.) and Infrastructure as Code.
• Experience with Kubernetes, Containers, and auth mechanisms like OAuth and Open ID Connect.
• Ability to create custom CI/CD pipeline jobs for security reviews or scans.

Culture & Benefits

• Hybrid working model.
• Next-level learning and development opportunities.
• Collaborative and innovative team culture.
• Stability and growth opportunities within one of the world's largest financial groups.