What you will do
- Write and maintain the scripts necessary to integrate security gates such as SAST, DAST, and SCA into CI/CD pipelines;
- Continuously tune and configure existing security scanning tools to eliminate false positives and deliver high-confidence alerts;
- Assist in coding and deploying automated hardened baselines and secure coding patterns;
- Work directly with product development teams to provide actionable, code-level remediation guidance in Java and Python.
Must haves
- 3–5 years of commercial experience blending software engineering and DevSecOps/AppSec;
- Solid coding proficiency in Python for automation and scripting;
- Ability to comfortably read and navigate Java source code;
- Working knowledge of modern CI/CD orchestration tools;
- Practical experience interacting with vulnerability scoring frameworks;
- Ability to operate with minimal supervision on day-to-day execution and reliably complete complex scripting and integration tasks;
- Upper-intermediate English level.
Nice to haves
- Hands-on experience with CNAPP or ASPM platforms such as Wiz;
- Basic understanding of application threat modeling.
We are looking for a Middle Application Security Engineer to execute hands-on DevSecOps work across CI/CD pipeline security integration, vulnerability management tooling, and automated hardened baseline deployment within a large-scale financial services security program. You will write Python scripts to integrate SAST, DAST, and SCA gates into CI/CD pipelines, tune scanning tools to reduce false positives, and provide code-level remediation guidance to Java and Python development teams. The role requires 3–5 years of combined software engineering and AppSec experience.
About the role
The benefits of joining us
Professional growth
Accelerate your professional journey with mentorship, TechTalks, and personalized growth roadmaps
Competitive compensation
We match your ever-growing skills, talent, and contributions with competitive USD-based compensation and budgets for education, fitness, and team activities
A selection of exciting projects
Join projects with modern solutions development and top-tier clients that include Fortune 500 enterprises and leading product brands
Flextime
Tailor your schedule for an optimal work-life balance, by having the options of working from home and going to the office – whatever makes you the happiest and most productive.
Your AgileEngine journey starts here
2 min
Tell us about yourself
2 sec
Confirm requirements
30 - 60 min
Pass a short test
5 min
Record a short video
→ Introduce yourself on a video, instead of waiting for an interview
Live interview
Ace the technical interview with our team
→ Schedule a call yourself right away after your video is reviewed
Live interview
Final interview with your team
→ Get to know the team you will be working with
Get an offer
As quick as possible
