Application Security Engineer

Full-time IT & Technology

About the role

The Application Security Engineer is responsible for ensuring the security of software applications through rigorous testing and validation. This role is dedicated to embedding security testing throughout the software development lifecycle (SDLC), identifying vulnerabilities, and supporting development teams in remediating security issues. The focus is on proactive, continuous security assessment of applications, both pre- and post-deployment, to maintain the highest standards of software security.

What you’ll be doing

• Collaborate with development teams to create and maintain application threat models (e.g., STRIDE, DREAD).
• Identify and document application‑specific risks; propose effective countermeasures.
• Integrate and operate application vulnerability scanning tools (e.g., Sonar Cloud, Snyk, OWASP ZAP, Burp Suite, Tenable WAS) within CI/CD pipelines.
• Interpret vulnerability reports, prioritise remed...