RemoteLeaf Logo
Log in Sign up

Application Security Engineer

20 hours, 16 minutes ago
Spain, Europe, Austria, Belgium, Germany, Greece, Hungary, Ireland, Latvia, Lithuania, Poland, Portugal, Romania
Full-time
Junior
Application Security Engineer
Cybersecurity
Burp Suite CI/CD GitLab CI Helm Jenkins Penetration Testing SonarQube Terraform WAF
Apply Now
Swapcard

Swapcard

Swapcard is a top event and community platform providing AI-powered all-in-one event management solutions for in-person and hybrid events, fostering networking and community building.

Professional Services
251-1K
$5M raised
View All Jobs 6

Description

  • Own and manage bug bounty programs, including triaging reports, validating findings, and reproducing proof-of-concepts.
  • Collaborate with developers and product owners to propose and support remediation of security issues.
  • Write or review pull requests to fix security vulnerabilities directly in the codebase.
  • Validate findings from external penetration tests and translate them into the development backlog.
  • Contribute to threat modeling, code review, and security design discussions.
  • Support the secure development lifecycle through SAST, dependency scanning, and CI/CD security automation.
  • Perform lightweight penetration testing of new features and releases when needed.
  • Maintain clear documentation to support application security processes.
  • Coordinate security communication between Security, Developers, and Product teams to speed up ticket resolution.

Requirements

  • Previous experience as a developer in a modern backend or frontend stack.
  • Hands-on security experience through bug bounty programs, CTFs, or pentesting.
  • Experience using pentesting tools such as Burp Suite.
  • Solid understanding of common web application vulnerabilities, including OWASP Top 10, SSRF, and IDOR.
  • Familiarity with SAST/DAST tools such as SonarQube and Snyk.
  • Experience collaborating with developers and product teams.
  • Strong problem-solving and communication skills with a find-and-fix mindset.
  • Experience creating or merging pull requests for security fixes in production code is a plus.
  • Knowledge of secure coding practices in web and API development is a plus.
  • Familiarity with CI tools such as Jenkins and GitLab CI, and DevOps tools such as Terraform and Helm is a plus.
  • Exposure to WAFs, anti-bot solutions, or related application security defenses is a plus.
  • Interest in contributing to security automation and developer enablement is a plus.

Benefits

  • Remote-first policy with a full remote work setup in Europe.
  • International team with 40+ nationalities.
  • Thrive in a startup environment with career growth opportunities.
  • Generous paid time off.
  • 100% of health insurance contributions paid by Swapcard.
  • Work-from-home budget for equipment setup.
  • Co-working space budget to support remote work.
  • Learning budget for developing new and existing skills.
  • Mental health care initiatives to support well-being.
  • In-person social gatherings to celebrate achievements.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Smartsheet

Senior Security Engineer II, Application Security (Remote Eligible)

Smartsheet 1K-5K Internet Software & Services

Smartsheet is hiring a Senior Security Engineer II to strengthen application security for its global SaaS platform by securing AI-integrated features, expanding security automation, and leading high-impact security reviews.

United States Full-time Senior Application Security Engineer
$175k-$245k
AWS Azure CI/CD GCP GitLab Go Java JavaScript LLM Penetration Testing Python Ruby TypeScript
3 days, 20 hours ago
e.l.f. Beauty

Senior Application Security Engineer

e.l.f. Beauty 251-1K Consumer Goods

Senior Application Security Engineer role at a remote marketing and digital commerce company focused on securing applications across the software development lifecycle.

India Full-time Lead Application Security Engineer
Agile AWS Azure CI/CD Cybersecurity DevSecOps GCP HTML JavaScript Penetration Testing Python REST API
6 days, 17 hours ago
Binance

Binance Accelerator Program - Blockchain / Smart Contract Security

Binance 5K-10K Capital Markets

Binance is seeking a Binance Accelerator Program participant to support smart contract and blockchain security work, including audits, vulnerability analysis, and risk detection across Web3 systems.

Asia Taiwan Hong Kong Internship Entry Level Application Security Engineer
Blockchain Git Python VS Code
1 week ago
Evolve Security Academy

Senior Application Security Tester & AI Red Team Subject Matter Expert

Evolve Security Academy 11-50 Internet Software & Services

Evolve Security is seeking a senior offensive security specialist to lead complex web, API, and AI red team engagements while defining the firm’s testing methodology for LLM-enabled and agentic systems.

United States Full-time Senior AI (Artificial Intelligence) Application Security Engineer
Bash GraphQL JavaScript JWT Metasploit Nmap OpenID Connect Penetration Testing Postman PowerShell Python REST API SAML SPA TypeScript
1 week, 2 days ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers