Senior Application Security Engineer

This is a fully remote position, open to applicants in Nigeria.

📋 Description

• Establishing the security standards for deployments and applications within our product teams.

• Integrating and enhancing security tools (SAST, SCA, Secret Detection) into developer workflows.

• Collaborating with product teams to design and create secure frameworks and patterns, thereby minimizing their future cognitive load.

• Automating the remediation of common security issues across various environments.

• Designing and implementing AI/LLM models and tools for security-focused change reviews.

• Promoting developer engagement with security through initiatives such as Security Champions programs, workshops, lunch-and-learns, and the security health score initiative.

• Partnering with product teams for threat modeling and converting compliance requirements (ISO 27001, SOC 2) into clear technical specifications.

• Strengthening CI/CD pipelines and ensuring relevant, actionable security checks are in place.

• Collaborating with Security Operations Engineers to automate the triage of security incidents, reducing noise and prioritizing high-signal alerts.

⛳️ Requirements

• Bachelor's degree in Computer Science or a related field in Software Engineering, or equivalent hands-on experience.

• A minimum of 5 years in Software Engineering or DevOps, with at least 3 years dedicated to application security.

• Strong communication skills to convey technical vulnerabilities in terms of business and engineering impact.

• Experience in cloud security (AWS) and Infrastructure as Code (Terraform/CloudFormation).

• Skilled in architecting and developing secure applications (preferably in Java).

• Proficient in scripting (Python, Bash, Go) for automating security tasks.

• In-depth knowledge of CI/CD systems and the integration of security checks without hindering delivery.

• Demonstrated ability to independently set security standards, promote adoption across engineering teams, and manage a Security Champions program.

• Desirable: Familiarity with AppSec fundamentals (OWASP Top 10, dependency management, OAuth2/OIDC), and experience with SonarQube and CrowdStrike.

🏝️ Benefits

• Flexibility and the opportunity to work remotely.

• A work-life balance that ensures you are not required to work on weekends or after hours.

• A progressive remote company that recognizes the importance of staying connected as a team by offering virtual social platforms for employee engagement.

• A monthly allowance for working from home, allowing you to create a comfortable work environment.

• A MacBook or Windows laptop to support your best work.

• Join a team of exceptionally talented individuals who are eager to share their knowledge and experiences.

• We are committed to your career growth and take pleasure in celebrating your successes and advancements!