Application Security Engineer

Your role and responsibilities

We are seeking a skilled and proactive Application Security Engineer to join our team.

In this role, you will be responsible for ensuring the security and integrity of our Spring Framework applications hosted on AWS. You will play a pivotal role in safeguarding our application throughout its lifecycle, from design to deployment, and beyond.

Main responsibilities:

• Take ownership of the applications’ security, ensuring compliance with industry standards and regulations.
• Support conducting regular security assessments and audits of our application.
• Implement and maintain robust security measures for data protection, with a focus on PostgreSQL and Elasticsearch.
• Collaborate with product and development teams to integrate security practices into the development lifecycle.
• Improve tooling and processes to identify and resolve security vulnerabilities.
• Develop and maintain documentation regarding security processes and procedures.
• Train other salvers about application security.

What skills will make you successful?

• Strong experience with Spring Framework applications.
• Proficiency in the AWS environment and its security aspects.
• Solid understanding of database security, preferably with PostgreSQL.
• Experience with Elasticsearch or similar search technologies.
• Familiarity with common security protocols, encryption techniques, and authentication mechanisms.
• Experience with SAST, DAST, SC, SBOM.
• Excellent problem-solving and analytical skills.
• Ability to work independently and take initiative.
• Strong communication skills and the ability to work collaboratively with cross-functional teams.

Preferred Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Relevant certifications (e.g., CISSP, CEH, OSCP) are a plus.
• Experience in taking ownership and leading security aspects in an application’s lifecycle.