Czym będziesz się zajmować? Job Description:We are hiring an Application Security Engineer to support the implementation and daily operations of our application security tooling and processes.This role focuses on technical depth—analyzing scan results, fine-tuning tools, and collaborating with engineers to embed secure development practices.You will work alongside the broader security and engineering teams to reduce vulnerabilities early in the development lifecycle.Responsibilities:Implement, configure, and manage application security tools focused on SAST, SCA, secrets detection, and IaC scanning.Integrate security scanning tools into CI/CD pipelines, ensuring coverage and minimizing friction for developers.Regularly review scan results, prioritize findings, and work with developers to remediate vulnerabilities.Perform secure code reviews and provide actionable remediation guidance.Maintain and continuously improve security rulesets, baselines, and documentation for tools like Semgrep, Mend, GitHub Advanced Security.Collaborate with security engineers on enhancements to DAST and container/image scanning workflows.Contribute to internal documentation, secure coding standards, and developer enablement efforts.

Kogo poszukujemy? Requirements:3–5 years of experience in Application Security or Software Development with a security focus. Hands-on experience with tools like Semgrep, Mend, GitHub Advanced Security, and HCL AppScan. Comfortable working in Git-based CI/CD environments (e.g., GitHub Actions, GitLab CI). Knowledge of OWASP Top 10, secure coding practices, and common code-level vulnerabilities. Familiarity with DAST tools (e.g., Tenable Web App Scanning) and experience supporting Pentest validation efforts. Ability to collaborate effectively with developers, security team members, and DevOps.