Empleos actuales relacionados con Application Security Engineer – Remote-First - Madrid, Madrid - Epi Company

  • Lead Application Security Engineer

    hace 2 días

    Madrid, Madrid, España Cloudlinux A tiempo completo

    CloudLinux is a global remote-first company. We are driven by our principles: do the right thing, employees first, we are remote first, and we deliver high-volume, low-cost Linux infrastructure and security products that help companies to increase the efficiency of their operations. Every person on our team supports each other and does what we can to ensure...

  • Lead Application Security Engineer

    hace 2 días

    Madrid, Madrid, España Cloudlinux A tiempo completo

    CloudLinux is a global remote-first company. We are driven by our principles: do the right thing, employees first, we are remote first, and we deliver high-volume, low-cost Linux infrastructure and security products that help companies to increase the efficiency of their operations. Every person on our team supports each other and does what we can to ensure...

  • Application Security Engineer

    hace 6 días

    Madrid, Madrid, España Liebherr Group A tiempo completo

    The Application Security Engineer is responsible for integrating security into the software development lifecycle (SDLC), conducting security testing, and ensuring applications are resilient to cyber threats. They work closely with development teams to identify, remediate, and prevent security vulnerabilities.We're looking for an Application Security...

  • Senior Application Security Engineer

    hace 2 días

    Madrid, Madrid, España Backbase A tiempo completo

    The job in short: keep millions of users and their banking data safe and secure.No day at Backbase is the same, and even more so for our security engineers. We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you'll need to stay on your toes and ahead of the game.Your core responsibility is to guide...

  • Application Security Architect

    hace 5 días

    Madrid, Madrid, España Liebherr Group A tiempo completo

    The Application Security Architect (m/f/d) designs and implements secure application architectures, defining security controls and policies to protect applications from threats. They provide strategic guidance to developers and security teams.LOCATION:Please note that theworking location for this position will be in Madrid city centre, where we are currently...

  • Application security expert

    hace 1 semana

    Madrid, Madrid, España Siemens A tiempo completo

    Join Siemens Smart Infrastructure Cybersecurity team as an Application Security Expert and shape how we embed security into every layer of our development and operations ecosystem. You'll work at the intersection of cybersecurity, cloud infrastructure, and DevOps practices—designing and implementing security controls that protect critical infrastructure...

  • Lead Security Operations Engineer

    hace 2 días

    Madrid, Madrid, España Cloudlinux A tiempo completo

    CloudLinux is a global remote-first company. We are driven by our principles: do the right thing, employees first, we are remote first, and we deliver high-volume, low-cost Linux infrastructure and security products that help companies to increase the efficiency of their operations. Every person on our team supports each other and does what we can to ensure...

  • Lead Security Operations Engineer

    hace 2 días

    Madrid, Madrid, España Cloudlinux A tiempo completo

    CloudLinux is a global remote-first company. We are driven by our principles: do the right thing, employees first, we are remote first, and we deliver high-volume, low-cost Linux infrastructure and security products that help companies to increase the efficiency of their operations. Every person on our team supports each other and does what we can to ensure...

  • Lead Security Operations Engineer

    hace 10 horas

    Madrid, Madrid, España CloudLinux A tiempo completo

    CloudLinux is a global remote-first company. We are driven by our principles: do the right thing, employees first, we are remote first, and we deliver high-volume, low-cost Linux infrastructure and security products that help companies to increase the efficiency of their operations. Every person on our team supports each other and does what we can to ensure...

  • Security Operations Engineer

    hace 2 días

    Madrid, Madrid, España Kudelski Security A tiempo completo

    About Kudelski SecurityKudelski Security is a leading global cybersecurity company, delivering tailored services and technologies to help organizations protect their data, systems, and reputation. With a strong heritage in innovation, we combine deep technical expertise with a proactive, client-focused approach to security.Position OverviewWe're looking for...

Application Security Engineer – Remote-First

hace 2 semanas

Madrid, Madrid, España Epi Company A tiempo completo

 Be part of a movement to change the way Europe pays

In today's digital world, payments often still feel outdated: random delays and confusing rules make it harder than it should be to pay and get paid. The European Payments Initiative (EPI) is here to change all that, forever.

With Wero, our digital wallet, we make sending and receiving money simple, seamless and secure across France, Belgium and Germany, with more countries and omnichannel solutions coming soon. Supported by 14 major banks and the two largest European acquirers, EPI is building a new, proudly European payment system: easy, instant and transparent, all for the greater good.

What's in it for you

We're hiring an Application Security Engineer to embed security at the heart of our platform. In this role, you'll act as a subject-matter expert, guiding teams to design and build secure, scalable systems from the ground up.

You'll influence key strategic decisions on application security architecture, bring modern practices and tooling into our SDLC, and mentor Security Champions across teams. Your expertise will directly strengthen the resilience of our products and support EPI's mission to build a trusted, sovereign European payment solution.

About the team

You'll be part of a pan-European Product & Engineering organization working at the forefront of secure payment solutions. Spread across Europe, your teammates bring diverse backgrounds and deep expertise, creating a collaborative environment where application security is a shared responsibility and a real driver of innovation.

Your impact

  • Embed security into design and development by leading threat modeling, code reviews, and secure architecture decisions
  • Drive continuous improvement of the platform's application security architecture through modern practices, tooling, and secure API design
  • Contribute to strategic decisions on security architecture, testing methodologies, and tooling across engineering teams
  • Harden scalable system architectures by applying DevSecOps practices, secure design principles, and modern authentication/authorization systems
  • Mentor and support Security Champions to raise security awareness and maturity across teams
  • Collaborate cross-functionally to deliver scalable, user-centric, and compliant payment solutions for millions of European users
  • Document and communicate technical architecture, security guidelines, and best practices to ensure shared understanding

Technology stack

  • Kotlin, Ktor, MongoDB, OpenAPI, Docker
  • SAST/DAST/SCA tooling, Kotest
  • AWS, Event Sourcing, Kubernetes, Terraform

To succeed, you should meet at least 70% of these requirements

  • 5+ years of professional experience in securing highly scalable web applications
  • Hands-on expertise with security testing practices and tooling (SAST, DAST, SCA) and secure API design 
  • Solid understanding of secure system architecture, OWASP ASVS, and modern authentication/authorization mechanisms 
  • Familiarity with cloud-native environments and infrastructure-as-code (AWS, Kubernetes, Terraform) is a plus  
  • Strong communication skills and ability to collaborate across engineering, product, and design teams
  • Fluent in English (CEFR C1 or C2); French, German or Dutch or any additional European languages is a plus
  • Experience in the payment or financial services industry is a plus.

If this looks like you, the recruitmentsteps are:

  1. A first call with one of our recruiters
  2. A technical interview with one of our Application Security engineers
  3. A final interview with the Head of Engineering and CISO
  4. Hopefully, an offer you can't refuse

Turn back if …

  • You see security only as patching issues rather than shaping design and development
  • You're uncomfortable working in a dynamic environment with evolving priorities 
  • You prefer working solo instead of collaborating and sharing expertise with other teams


Otherwise apply

Our commitment to equal employment opportunities

EPI offers the same job opportunities to all, without distinction of gender, ethnicity, religion, sexual orientation, social status, disability or age. EPI promotes the development of an inclusive work environment that mirrors the diversity of the clients our product is serving.