RemoteLeaf Logo
Log in Sign up

Application Security Engineer

1 month, 1 week ago
Saudi Arabia
Junior
Application Security Engineer
Cybersecurity
AWS CI/CD Penetration Testing React Ruby on Rails
Apply Now
Lucidya

Lucidya

Lucidya provides a leading platform for customer experience management in the Arab World, utilizing AI-driven social media analytics and monitoring tools to enhance strategic decision-making and improve brand performance across various social channels.

Media
51-250
Founded 2016
$7M raised
View All Jobs 9

Description

  • Develop and implement automated security testing and vulnerability detection workflows integrated into the SDLC.
  • Conduct security reviews of web applications, mobile applications, APIs, and cloud environments, including public and private infrastructure.
  • Perform penetration testing on web, mobile, API, desktop applications, and supporting infrastructure.
  • Evaluate application defenses, identify architectural and design-level security gaps, and recommend mitigation strategies.
  • Proactively identify vulnerabilities and complex security risks before they reach production.
  • Collaborate with engineering teams to support secure coding practices and security-aware development.
  • Conduct security-focused code reviews for critical services and deployments.
  • Research emerging threats and contribute to new security tools and techniques.
  • Review application code and architecture from a security perspective.
  • Participate in threat modeling, vulnerability triage, and remediation tracking.

Requirements

  • 2-4 years of experience in application security, security engineering, or a related role.
  • Background as a software engineer transitioning into security is highly valued.
  • Hands-on experience securing applications built with Ruby on Rails and React.
  • Experience performing penetration testing on modern web applications and APIs.
  • Strong understanding of the Secure Development Life Cycle (SDLC).
  • Hands-on penetration testing experience across web, mobile, and APIs.
  • Cloud security experience with AWS and/or GCP.
  • Ability to assess application architecture and identify design-level risks.
  • CISM, OSCP, or SANS GIAC certifications are preferred/non-negotiable.
  • Strong communication skills and ability to work cross-functionally.
  • Comfortable engaging with developers, engineers, and stakeholders.
  • Experience working in SaaS or AI-driven products is a nice to have.
  • Exposure to building security functions from scratch is a nice to have.
  • Prior experience with security tooling development or automation is a nice to have.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

TOMORROW HIRE

Application Security Engineer - DAST & Burp Suite Enterprise Security Testing

TOMORROW HIRE Internet Software & Services

Application Security Engineer at a fully remote federal contractor supporting secure application development, testing, and compliance for enterprise web applications.

United States Full-time Senior Application Security Engineer
$120k-$140k
Bash Burp Suite C# CI/CD Eclipse Java Linux .NET Python Selenium Unix Visual Studio
4 hours, 35 minutes ago
Evolve Security Academy

Senior Application Security Tester & AI Red Team Subject Matter Expert

Evolve Security Academy 11-50 Internet Software & Services

Evolve Security is seeking a senior offensive security specialist to lead complex web, API, and AI red team engagements while defining the firm’s testing methodology for LLM-enabled and agentic systems.

United States Full-time Senior AI (Artificial Intelligence) Application Security Engineer
Bash GraphQL JavaScript JWT Metasploit Nmap OpenID Connect Penetration Testing Postman PowerShell Python REST API SAML SPA TypeScript
6 hours, 41 minutes ago
Virtualitics

Lead AppSec Engineer

Virtualitics 51-250 IT Services

Virtualitics is seeking a Lead Application Security Engineer to shape secure AI and application security practices for defense, government, and critical infrastructure systems.

United States Full-time Lead Application Security Engineer
$150k-$220k
AWS Azure Docker GCP Kubernetes
2 days ago
GitLab

VP of Product Security

GitLab 1K-5K Internet Software & Services

GitLab is hiring a Vice President of Product Security to lead security strategy and execution for its AI-powered DevSecOps platform, with responsibility for embedding security into product design, delivery, and the supporting cloud and infrastructure systems.

United States Full-time Executive Application Security Engineer Product Manager
$298k-$360k
CI/CD DevSecOps JavaScript Microservices OWASP Secrets Management Serverless
3 days, 3 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers