CrawlJobs Logo
Paribu Logo Paribu · IT - Software Development

Application Security Engineer

Türkiye, İstanbul · Job Posted April 23, 2026
Apply Position
Job Link Share

Job Description

Performing regular penetration testing and vulnerability assessments on internally developed and third-party web, iOS, and Android applications; Managing and integrating SAST, DAST, and IAST tooling into application security processes and engineering workflows; Contributing to the continuous improvement of the Secure Software Development Life Cycle (SSDLC) and DevSecOps pipelines; Conducting secure code reviews in close collaboration with software development teams; Producing clear and actionable security findings, providing remediation guidance, and tracking vulnerabilities through resolution; Monitoring the latest cybersecurity threats, zero-day vulnerabilities, and attack vectors to help strengthen proactive defense mechanisms; Collaborating with engineering and product teams to improve the security posture of applications across development, testing, and production environments; Applying AI-supported approaches in security research, vulnerability analysis, and workflow efficiency, while maintaining a strong understanding of secure and responsible AI usage in cybersecurity contexts

Job Responsibility

  • Performing regular penetration testing and vulnerability assessments on internally developed and third-party web, iOS, and Android applications
  • Managing and integrating SAST, DAST, and IAST tooling into application security processes and engineering workflows
  • Contributing to the continuous improvement of the Secure Software Development Life Cycle (SSDLC) and DevSecOps pipelines
  • Conducting secure code reviews in close collaboration with software development teams
  • Producing clear and actionable security findings, providing remediation guidance, and tracking vulnerabilities through resolution
  • Monitoring the latest cybersecurity threats, zero-day vulnerabilities, and attack vectors to help strengthen proactive defense mechanisms
  • Collaborating with engineering and product teams to improve the security posture of applications across development, testing, and production environments
  • Applying AI-supported approaches in security research, vulnerability analysis, and workflow efficiency, while maintaining a strong understanding of secure and responsible AI usage in cybersecurity contexts

Requirements

  • Bachelor's degree in Computer Science, Software Engineering, or a related field
  • Minimum 5 years of hands-on experience in web and mobile (iOS & Android) application security
  • Deep understanding of security standards and methodologies such as OWASP Top 10, OWASP Mobile Top 10, and SANS 25
  • Proficiency with application security testing and vulnerability analysis tools such as Burp Suite, Nessus, Acunetix, Fortify, Checkmarx, and MobSF
  • Strong knowledge of mobile application architectures, reverse engineering concepts, and secure coding principles
  • Experience contributing to SSDLC and integrating security into modern engineering and release processes
  • Familiarity with AI-assisted analysis and research workflows, and awareness of how AI can be applied in application security use cases
  • Excellent written and verbal communication skills in English
  • Strong analytical thinking, problem-solving capabilities, and a team-oriented mindset
  • Relevant certifications such as OSCP, OSWE, CEH, GWAPT, GMOB, eWPT, or eMAPT are highly preferred

Nice to have

Relevant certifications such as OSCP, OSWE, CEH, GWAPT, GMOB, eWPT, or eMAPT are highly preferred

What we offer

  • Meal allowance
  • Private health insurance
  • Commuting support
  • S.O.S. leave (10 days)
  • Birthday leave
  • Language learning support
  • Personal development support
  • Well-being & health platform
  • Relocation allowance
  • Top-tier work equipment
  • Cultural events
Paribu - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Application Security Engineer

8 matching positions

Application Security Engineer

The Opportunity: Everyone is trying to harness the cloud, but not everyone knows...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 4+ years of experience designing, implementing, and administering Palo Alto Next-Generation Firewalls to enable micro‑segmentation and identity‑aware access controls across complex enterprise environments
  • 4+ years of experience with Palo Alto Next‑Generation Firewalls (NGFW), including applying App‑ID, User‑ID, segmentation policies, and advanced security profiles
  • Experience working in DoD IL Clouds and on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • Health
  • Life
  • Disability
  • Financial
  • Retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Fulltime
Read More
Arrow Right

Application Security Engineer

We are looking for an Application Security Engineer to strengthen secure softwar...
Location
Location
United States , Reading
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or another related technical discipline
  • At least 5 years of experience in information security, including 3 or more years dedicated to application security, secure software engineering, or DevSecOps
  • Proven success helping build, strengthen, or scale an application security program in a lead or highly influential capacity
  • Strong understanding of common application security risks, secure SDLC practices, and widely recognized vulnerability frameworks and standards
  • Hands-on experience with application security testing platforms such as Burp Suite, Fortify, Checkmarx, Veracode, or similar tools
  • Working knowledge of threat modeling, penetration testing, secure architecture review, and modern software security assessment techniques
  • Practical experience securing cloud environments such as AWS or Azure, along with familiarity with Kubernetes, container hardening, and runtime protection
  • Active passport required, with willingness and ability to travel internationally
Job Responsibility
Job Responsibility
  • Partner with software engineering and cybersecurity teams to build security into application design, coding practices, release processes, and production support
  • Perform in-depth security evaluations through code analysis, threat modeling, penetration testing, and vulnerability assessments to uncover and prioritize risk
  • Establish and uphold secure development standards, reusable patterns, and technical guidance that improve consistency across teams
  • Administer and enhance security controls within CI/CD workflows, including code scanning, infrastructure-as-code checks, and container security tooling
  • Contribute to architecture assessments for cloud-based systems, microservices, and containerized applications to ensure resilient and secure designs
  • Evaluate application risks and support formal security reviews to guide mitigation planning and informed technical decisions
  • Verify that application security activities align with applicable compliance obligations and recognized industry frameworks
  • Create and deliver training sessions that help developers strengthen secure coding habits and increase security awareness
  • Track emerging attack techniques and threat intelligence, then apply those insights to improve preventive and detective controls
  • Support the monitoring, investigation, and remediation of application security issues, while coordinating effectively with external vendors and consultants as needed
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • Eligibility to enroll in company 401(k) plan
Read More
Arrow Right

Application Security Engineer

Everyone is trying to “harness the cloud,” but not everyone knows how. As a clou...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 4+ years of experience designing, implementing, and administering Palo Alto Next-Generation Firewalls to enable micro‑segmentation and identity‑aware access controls across complex enterprise environments
  • 4+ years of experience with Palo Alto Next‑Generation Firewalls (NGFW), including applying App‑ID, User‑ID, segmentation policies, and advanced security profiles
  • Experience working in DoD IL Clouds and on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • health, life, disability, financial, and retirement benefits
  • paid leave
  • professional development
  • tuition assistance
  • work-life programs
  • dependent care
  • recognition awards program
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Everyone is trying to “harness the cloud,” but not everyone knows how. As a clou...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 4+ years of experience designing, implementing, and administering F5 BIG-IP virtual edition and LTM
  • 4+ years of experience designing, implementing, and administering F5 BIG-IP APM and ASM
  • Experience working in DoD IL Clouds and on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • Health
  • Life
  • Disability
  • Financial
  • Retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2-5 years of experience in technology development
  • Expertise and hands on in one or more of the core areas of – Java Tech Stack (Java, JDK, JSP, Spring Boot/Angular)
  • Explore automation opportunities to reduce manual errors
  • Ability to work independently with minimal supervision
  • Take ownership, drive strategy
  • Quickly adopt the changes
Job Responsibility
Job Responsibility
  • Analyze current vulnerabilities in system and propose and establish common coding standards to avoid similar issues in future
  • Liaise with QA, support and other teams involved with testing, deploying, and maintaining environment applications, infrastructure and releases
  • Capable of working flexible hours to collaborate with team across the globe
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Security Risk Assessment Security Policies, Standards, Guidelines, And Procedure...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 3 years of experience in application security or software development with security focus
  • Strong experience in DevSecOps with a solid foundation in cybersecurity and risk assessment
  • Hands-on knowledge of secure software development lifecycle (SSDLC) principles and tools
  • Familiarity with integrating security testing tools and practices within CI/CD environments
  • Experience with secure coding and vulnerability assessments across common web and mobile technologies
  • Ability to work with and guide development teams without being directly involved in implementation
  • Excellent communication skills and the ability to translate complex security requirements into practical advice
Job Responsibility
Job Responsibility
  • Perform comprehensive risk assessments of development environments, DevOps workflows, and CI/CD processes
  • Perform security assessments, threat modelling, and code reviews to identify vulnerabilities in applications
  • Review and recommend improvements in areas such as identity and access management, network security, secure SDLC practices, source code management, cryptographic key handling, and data protection
  • Guide application teams on adopting secure development practices and integrating security tools such as SAST, DAST, and VAPT into their workflows
  • Review existing CI/CD pipelines from a security perspective and provide expert recommendations to align with DevSecOps principles
  • Mentor and advise internal teams on secure coding practices across various platforms and languages (e.g., JavaScript, Node.js, Java, C#, Python, etc.)
  • Develop and maintain secure coding guidelines and security standards
  • Collaborate with development teams to remediate security issues and provide guidance on secure coding practices
What we offer
What we offer
  • Hybrid working mode
  • 18 days of Annual leave
  • Comprehensive coverage including General Practitioner, hospitalization, dental, and optical
  • Annual bonus based on individual performance
  • Training programs, certification opportunities, and training incentives to support career growth
  • Regular team-building activities and social events
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Checkmarx is the enterprise application security leader and the host of Checkmar...
Location
Location
Portugal , Braga
Salary
Salary:
Not provided
checkmarx.com Logo
Checkmarx
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in computer science or another highly technical scientific discipline
  • +3 years experience in development using one or more high-level programming languages like Java, .Net, Javascript, Go, Python, etc.
  • +3 years experience in security-focused code review covering some market standards AppSec Frameworks like OWASP Web/API/Mobile Top 10, PCI- DSS, etc.
  • A proactive approach to spotting problems, areas for improvement, and performance bottlenecks
  • Strong technical aptitude - being able to pick up technical concepts rapidly is required
  • Highly motivated self-starter
  • Fluent in English (++ for other languages)
Job Responsibility
Job Responsibility
  • Support some of our strategic/top-tier customers in conducting security-focused code reviews using the Checkmarx Platform
  • Support customer's AppSec and Dev Teams with mitigation advice for identified vulnerabilities
  • Create proof-of-concept based on identified vector attacks
  • Conduct security-focused statical code analysis on top of a broad range of development languages and open-source libraries
  • Support customer AppSec/Dev teams with mitigation strategy/advice for identified vulnerabilities
  • When required, create proofs-of-concept that can illustrate a given vulnerability exploitability
  • When needed, support AppSec/Dev teams in analyzing applications
What we offer
What we offer
  • Great work environment
  • Professional development
  • Challenging careers
  • Competitive compensation
  • Great work-life balance
  • Great benefits and perks throughout the year
  • Fulltime
Read More
Arrow Right

Application Security Engineer

In this position, you will play a key role in protecting our client’s applicatio...
Location
Location
Poland , Warszawa
Salary
Salary:
Not provided
devire.pl Logo
Devire
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Solid experience in application security or secure software development
  • Good understanding of OWASP Top 10 and common vulnerabilities
  • Experience with tools such as SAST, DAST, or SCA is a plus
  • Familiarity with cloud environments (AWS, Azure, or GCP)
Job Responsibility
Job Responsibility
  • Lead the adoption of secure coding practices across global development teams
  • Conduct hands-on security assessments of web and cloud-based applications
  • Partner with DevOps and engineering teams to integrate security into CI/CD pipelines
  • Facilitate threat modeling sessions and proactively identify vulnerabilities early
  • Stay up to date with AppSec trends and contribute to shaping security strategy
What we offer
What we offer
  • Flexible hybrid working model
  • Modern office in Warsaw
  • Career development programs
  • Access to trainings, certifications, and conferences
  • Competitive bonus structure
  • Private medical care
  • Life and travel insurance plus pension plan
  • Sports card co-financing
  • Meal subsidies in the office
  • Additional days off
Read More
Arrow Right