Application Security Engineer

This is a fully remote position, open to applicants in Brazil.

📋 Description

• Define and advance ROIT's strategy for Application Security and DevSecOps;

• Establish continuous security practices throughout the software development lifecycle (Secure SDLC);

• Integrate security tools and controls within CI/CD pipelines;

• Develop and enhance practices concerning: SAST; DAST; SCA; Secret Scanning; Container Scanning; IaC Scanning;

• Create and share secure standards for: APIs; microservices; Kubernetes; cloud workloads;

• Assist engineering teams in identifying, prioritizing, and addressing vulnerabilities;

• Engage in threat modeling, architectural reviews, and the establishment of security controls;

• Support efforts related to ISO 27001, compliance, risk management, and audits;

• Monitor critical vulnerabilities, risks, and incidents linked to application security;

• Automate security processes and controls wherever feasible;

• Foster a security-oriented culture within technical teams, acting in a consultative and collaborative manner;

• Contribute to enhancing the organization’s technical maturity in contemporary security practices.

⛳️ Requirements

• Bachelor's degree in Computer Science, Software Engineering, Information Systems, Information Security, or a related field.

• Extensive experience in Application Security, DevSecOps, or Software Engineering Security;

• Familiarity with cloud-native environments and distributed architectures;

• Proficiency with CI/CD pipelines and security automation;

• Understanding of: web application security; REST APIs and authentication/authorization; Kubernetes and containers; security in AWS, Azure, or GCP; OWASP Top 10; Threat Modeling; vulnerability management;

• Experience with tools for: SAST; DAST; SCA; container security; secret detection; IaC security;

• Knowledge of modern engineering and automation practices;

• Familiarity with compliance and security frameworks, particularly ISO 27001.

🏝️ Benefits

• Training

• Salary

• Full-time

• Remote