Application Security Engineer

• Define and standardize Secure Software Development Life Cycles (S-SDLC) across multiple development teams.
  
• Integrate and manage security testing tools (SAST, DAST, SCA) within CI/CD pipelines.
  
• Lead vulnerability management initiatives in cloud environments and Kubernetes clusters.
  
• Maintain and automate infrastructure security controls, including WAFs and network policies.
  
• Guide Development and DevOps teams on security best practices, ensuring compliance with frameworks such as DORA, CIS Benchmarks, and OWASP.
  

Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, or equivalent hands-on experience.
  
• Strong professional experience as a Security Engineer, with a solid focus on Application Security and DevSecOps methodologies.
  
• Hands-on experience with containerization and orchestration tools.
  
• Strong programming and scripting skills (e.g., Python, Bash, Java, or Go).
  
• Knowledge of industry security standards, including OWASP Top 10 and ISO 27001.
  
• Good English communication skills to interact effectively with both technical and executive stakeholders.
  

• Intention to obtain or completion of industry certifications such as CKA (Certified Kubernetes Administrator) or CKS (Certified Kubernetes Security Specialist).
  
• Strong analytical skills for threat detection and analysis.
  
• Excellent communication skills to convey technical concepts clearly.
  
• A proactive approach to aligning security requirements with technology modernization and business objectives.