Application Security Engineer

Requirements

• Previous experience as a developer (any modern backend/frontend stack)
• Hands‑on security experience through bug bounty programs, CTFs, or pentesting, and respective tools (eg. Burp Suite)
• Solid understanding of common application vulnerabilities (OWASP Top 10, SSRF, IDOR, etc.)
• Familiarity with SAST/DAST tools (e.g. SonarQube, Snyk)
• Experience collaborating with developers and product teams
• Strong problem‑solving and communication skills with a “find and fix” mindset
• (Desirable) Experience creating or merging PRs for security fixes in production code
• (Desirable) Knowledge of secure coding practices in web and API development
• (Desirable) Familiarity with CI (Jenkins, GitLabCI…) and DevOps tools (Terraform, Helm…)
• (Desirable) Exposure to WAFs, anti-bot solutions, or related AppSec defenses
• (Desirable) Interest in contributing to security automation and de...