Lead Application Security Engineer

hace 5 días

Madrid, Madrid, España Cloudlinux A tiempo completo

CloudLinux is a global remote-first company. We are driven by our principles: do the right thing, employees first, we are remote first, and we deliver high-volume, low-cost Linux infrastructure and security products that help companies to increase the efficiency of their operations. Every person on our team supports each other and does what we can to ensure we are all successful. We are truly a great place to work.

Check out our website for more information

We are looking for a skilled Lead Application Security Engineer / DevSecOps Engineer who will play a key role in improving the security of our software products and driving best practices across the development lifecycle.

As a Lead Application Security Engineer / DevSecOps Engineer, you will:

  • Perform a security review of the company's external services.
  • Design and implement recommendations for security hardening.
  • Participate in all steps of SDLC as a security engineer.
  • Design and review new features to implement the Security by Design principle.
  • Call attention to risks and drive actions to address those risks to protect users.

To be successful in this role, you should have:

  • Good technical knowledge and deep understanding of security, including but not limited to: web applications security (both backend and frontend), penetration testing, and modern security mechanisms.
  • Experience in assessing the security of Web applications (at least 3 years) and Binary applications.
  • Deep understanding of modern web technologies (OAuth, JWT, CORS, CSP, SOP, SameSite, etc.) and architectures.
  • Relevant education or a good understanding of information security and information technologies basics.
  • Experience coding/scripting in one or more general-purpose languages.
  • Deep understanding of Linux architecture and security stack.
  • Experience in binary vulnerabilities and exploitation.
  • At least an upper-intermediate level of English proficiency.

It would be a plus if you also have:

  • Experience in exploiting vulnerabilities found in the code.
  • Experience with code audits, code audit automation.
  • Experience in architecting, developing, or maintaining secure cloud solutions.
  • Experience in review of Docker/Kubernetes architectures.
  • Successful CTF or Bug Bounty participation will be a major plus.
  • Relevant certificates (OSCP, AWAE, CREST, GPEN) will be a major plus.

What's in it for you?

  • A focus on professional development.
  • Interesting and challenging projects.
  • Fully remote work with flexible working hours, which allows you to schedule your day and work from any location worldwide.
  • Paid 24 days of vacation per year, 10 days of national holidays, and unlimited sick leaves.
  • Compensation for private medical insurance.
  • Co-working and gym/sports reimbursement.
  • Budget for education.
  • The opportunity to receive a reward for the most innovative idea that the company can patent.

By applying for this position, you agree with CloudLinux Privacy Policy ) and give us your consent to maintain and process your personal data with this respect. Please read our Privacy Policy for more information.

  • Lead Application Security Engineer

    hace 5 días

    Madrid, Madrid, España Cloudlinux A tiempo completo

    CloudLinux is a global remote-first company. We are driven by our principles: do the right thing, employees first, we are remote first, and we deliver high-volume, low-cost Linux infrastructure and security products that help companies to increase the efficiency of their operations. Every person on our team supports each other and does what we can to ensure...

  • Application Security Engineer

    hace 1 semana

    Madrid, Madrid, España Liebherr Group A tiempo completo

    The Application Security Engineer is responsible for integrating security into the software development lifecycle (SDLC), conducting security testing, and ensuring applications are resilient to cyber threats. They work closely with development teams to identify, remediate, and prevent security vulnerabilities.We're looking for an Application Security...

  • Senior Application Security Engineer

    hace 5 días

    Madrid, Madrid, España Backbase A tiempo completo

    The job in short: keep millions of users and their banking data safe and secure.No day at Backbase is the same, and even more so for our security engineers. We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you'll need to stay on your toes and ahead of the game.Your core responsibility is to guide...

  • Lead Security Operations Engineer

    hace 3 días

    Madrid, Madrid, España CloudLinux A tiempo completo

    CloudLinux is a global remote-first company. We are driven by our principles: do the right thing, employees first, we are remote first, and we deliver high-volume, low-cost Linux infrastructure and security products that help companies to increase the efficiency of their operations. Every person on our team supports each other and does what we can to ensure...

  • Lead Security Operations Engineer

    hace 5 días

    Madrid, Madrid, España Cloudlinux A tiempo completo

    CloudLinux is a global remote-first company. We are driven by our principles: do the right thing, employees first, we are remote first, and we deliver high-volume, low-cost Linux infrastructure and security products that help companies to increase the efficiency of their operations. Every person on our team supports each other and does what we can to ensure...

  • Lead Security Operations Engineer

    hace 5 días

    Madrid, Madrid, España Cloudlinux A tiempo completo

    CloudLinux is a global remote-first company. We are driven by our principles: do the right thing, employees first, we are remote first, and we deliver high-volume, low-cost Linux infrastructure and security products that help companies to increase the efficiency of their operations. Every person on our team supports each other and does what we can to ensure...

  • Lead Application Security Engineer, Technology

    hace 1 día

    Madrid, Madrid, España Vista A tiempo completo

    Our TeamVista Security is a global team that ensures that security risks are identified and managed, and that customer trust is maintained by creating a culture of security in which engineers are empowered via standards, tools, processes, and training to proactively address security issues. We foster a collaborative environment that embraces security without...

  • Security Operations Engineer

    hace 5 días

    Madrid, Madrid, España Kudelski Security A tiempo completo

    About Kudelski SecurityKudelski Security is a leading global cybersecurity company, delivering tailored services and technologies to help organizations protect their data, systems, and reputation. With a strong heritage in innovation, we combine deep technical expertise with a proactive, client-focused approach to security.Position OverviewWe're looking for...

  • Application Security Architect

    hace 1 semana

    Madrid, Madrid, España Liebherr Group A tiempo completo

    The Application Security Architect (m/f/d) designs and implements secure application architectures, defining security controls and policies to protect applications from threats. They provide strategic guidance to developers and security teams.LOCATION:Please note that theworking location for this position will be in Madrid city centre, where we are currently...

  • Application security expert

    hace 2 semanas

    Madrid, Madrid, España Siemens A tiempo completo

    Join Siemens Smart Infrastructure Cybersecurity team as an Application Security Expert and shape how we embed security into every layer of our development and operations ecosystem. You'll work at the intersection of cybersecurity, cloud infrastructure, and DevOps practices—designing and implementing security controls that protect critical infrastructure...