Application Security Engineer

We are looking for a skilled Application Security Engineer to join the Application Security team and help build and maintain a highly secure environment for the in-house applications. This role is ideal for someone passionate about protecting modern, microservices-based systems and embedding security into every stage of the development lifecycle.

About the Role

You will work closely with development and operations teams to identify, assess, and mitigate security risks across our internal services. Our applications are built on a microservices architecture, primarily using Python and Golang, and are supported by a strong culture of automation and continuous security improvement.

Key Responsibilities

Conduct security reviews of application architecture and source code for new and existing in-house services.

Support secure SDLC practices and vulnerability management within development teams.

Identify and respond to application security incidents, including investigation and forensics.

Manage and continuously improve the company’s bug bounty program.

Maintain and enhance application security tooling, including ASPM, SAST, SCA, DAST, WAF, and internal automation systems.

Collaborate with cross-functional teams to resolve security issues and maintain business continuity and compliance.

Deliver security awareness and best-practice training for developers and engineering teams.


Requirements:

• 4+ years of experience in Application Security or penetration testing, or 5+ years in other IT security roles.
• Strong background in software development and/or penetration testing.
• In-depth knowledge of common technical and logical vulnerabilities and effective mitigation strategies.
• Hands-on experience exploiting and defending against web application vulnerabilities.
• Ability to read and write code in at least one programming language.
• Strong communication skills with the ability to explain security risks and solutions to technical and non-technical stakeholders.
• Understanding of microservice architecture, environment, and security measures
• Understanding of security aspects of virtualization, containerization (Docker), and cloud services (AWS)
• CTF or Bug Bounty Experience
  

The offer along the way:

• Competitive salary and annual performance bonus
• Full relocation support for self and family — flights, housing, visas, and legal assistance included
• Top-tier health insurance with full family coverage plus life insurance.
• Unlimited learning opportunities
• Education allowance
• 21 working days of annual leave, plus public holidays and fully paid sick, maternity, and paternity leave.
• Expat tax perks: up to 50% income tax exemption
• Support with the naturalisation process for relocated employees
  

At East West HR Consulting, we know that changing jobs - and changing countries - is a big step. We make it smooth, supported, and truly life-changing.

What your journey looks like:

• Interview with a Talent Acquisition Specialist (45 minutes)
• Short online English test (for non-native speakers)
• Technical interview (1,5 hours)
• Final interview (1 hour)