IT Risk Compliance

Application Security Engineer / DevSecOps Specialist

Location: Málaga, Spain

Work Model: Hybrid – 1 day per week onsite

Industry: Banking / Fintech / Regulated Environments

Company: Virtusa

About the Role

We are looking for an Application Security Engineer / DevSecOps Specialist to join our growing security team in sunny Málaga. You will play a key role in strengthening the security of modern applications and containerized environments, working closely with development, architecture, and cloud teams.

This role is ideal for professionals with a development background who are passionate about cybersecurity and want to grow in secure software and cloud-native security.

About Virtusa

Virtusa is a global digital engineering and IT services company, partnering with the world's leading banks, fintechs, and enterprises. With delivery centers across Europe, the Americas, and Asia, Virtusa offers a truly multicultural and collaborative environment, strong learning culture, and excellent work-life balance. Our teams work on high-impact, mission-critical systems in highly regulated industries.

Key Responsibilities

• Lead the governance and management of vulnerabilities in applications and container platforms (Docker, Kubernetes)
• Perform risk assessments on new applications from the design phase using Threat Modeling
• Provide security guidance and continuous support to development teams on secure coding practices

• Integrate and manage security tools for:

• Software Composition Analysis (SCA)

• Static Application Security Testing (SAST)
• Dynamic Application Security Testing (DAST)
• Container Security & CSPM
• Track, prioritize, and manage detected vulnerabilities, supporting remediation or false-positive validation
• Participate in architecture reviews and define security requirements
• Act as a key contributor to the organization's DevSecOps strategy

Required Skills & Experience

• Hands-on experience in software development
• Strong knowledge of Docker, Kubernetes, and container ecosystems
• Experience using application security and container scanning tools
• Strong interest in cybersecurity and motivation to stay updated with new threats and solutions
• Excellent communication skills, teamwork, and results-driven mindset

Nice to Have

• Experience with SDLC security processes
• Knowledge of security standards and regulations
• Experience with Cloud platforms (AWS, Azure, GCP)

We Value

• Security certifications such as OSCP, CKA, CKS, CISSP, or similar
• Proactivity, technical curiosity, and continuous learning
• Experience in banking, fintech, or other regulated industries

Why Join Virtusa?

• Work in sunny Málaga with a flexible hybrid model (1 day per week onsite)
• Be part of a global, diverse, and multicultural organization
• Grow your career in cybersecurity and cloud security
• Work on large-scale, regulated banking and fintech projects
• Strong emphasis on learning, certifications, and internal mobility
• Excellent work-life balance and team culture

About Virtusa

Teamwork, quality of life, professional and personal development: values that Virtusa is proud to embody. When you join us, you join a team of 27,000 people globally that cares about your growth — one that seeks to provide you with exciting projects, opportunities and work with state of the art technologies throughout your career with us.

Great minds, great potential: it all comes together at Virtusa. We value collaboration and the team environment of our company, and seek to provide great minds with a dynamic place to nurture new ideas and foster excellence.

Virtusa was founded on principles of equal opportunity for all, and so does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit, and business need.

---