Application Security Engineer (Remote in Bulgaria, Germany, Italy, Serbia, Turkey)

Job description

We are seeking an Application Security Engineer with a strong background in web application security design, secure development practices, and vulnerability testing. This role also requires practical experience with Software Bill of Materials (SBOM) management and implementation, contributing to our secure SDLC and software supply chain risk reduction efforts. Duties and Responsibilities: - Perform threat modeling, security architecture review, and design analysis for web applications and APIs. - Conduct manual and automated security testing during development and pre-release stages. - Design and implement security pipelines (including SAST and DAST) and integrate them into the SDLC process. - Implement and manage SBOM generation and consumption processes across the SDLC. - Collaborate with development teams to ensure timely remediation of identified vulnerabilities. - Maintain security guidance aligned with OWASP best practices and provide trainings for development teams. - Stay current with evolving application security threats, tools, and industry developments. Qualifications and Experience: - 3–5 years of experience in application security, with a focus on web applications and...