CrawlJobs Logo

AppSec Engineer

fullpath.com Logo

Fullpath

Location Icon

Location:
Israel , Tel Aviv

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Fullpath is an AI-first tech company in the automotive space with hubs across the US and Israel. Our mission is to constantly disrupt the industry by creating new, groundbreaking technologies to help dealers build stronger, more resilient businesses. Our work happens in the fast lane as we work to bring AI and data-driven solutions to a quickly evolving industry. Our team at Fullpath is made up of curious and creative individuals who are always looking to achieve the impossible. We are bold, collaborative, and goal driven, and, at our core, we believe every voice has value and can impact our bottom line. We are looking for an AppSec Engineer to join our team and make a real impact on our Secure Software Development Lifecycle! As an AppSec Engineer your mission will be to be the driving force behind our secure development lifecycle. You won’t just find bugs; you will help build the systems that prevent them. You will have the opportunity to help navigate the "Agentic Era" by building autonomous security guardrails, securing LLM-based workflows, and empowering developers to move fast without breaking security.

Job Responsibility:

  • Build & automate: Develop and maintain internal security tooling, automated workflows, and AI security agents
  • Code integrity: Execute secure code reviews and provide actionable remediation guidance to engineering teams
  • Vulnerability management: Lead the tracking, triaging, and reporting of security flaws across all product lines
  • Best practice advocacy: Drive the adoption of secure coding standards, partnering with R&D and DevOps teams to embed security early and often
  • Extend our D&R capabilities: Build scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
  • Document: Draft requirement documents for security products and innovative technologies

Requirements:

  • 2-4 years experience as an Application Security Engineer or similar role from a Software Development Company
  • In-depth knowledge in threat modeling, risk management, and security controls
  • Experience with AI Security and Security AI
  • Proficiency with OWASP Top 10: API, LLM, and Agentic applications
  • Hands-on competency integrating security tools such as SAST, DAST, SCA, and API security testing
  • Familiarity with CI/CD pipelines and Infrastructure as Code implementation
  • Practical background in software development and coding
  • Extensive knowledge of cloud technologies and cloud-native applications, AWS and GCP
  • Cybersecurity certifications such as OSCP, GPEN, CSSLP - big advantage!
  • Fluent communication in Hebrew and English

Nice to have:

  • Endless curiosity and passion for emerging technology
  • Ability to handle prioritize and execute multiple tasks simultaneously
  • Ability to work collaboratively across multiple departments
  • Fluent in Hebrew & English - ability to lead meetings and present
  • Strong communication and collaboration skills
What we offer:
  • Family-friendly environment and flexible working hours
  • Learning and growth opportunities within a fast-paced tech startup environment
  • Clear career advancement path for strong performers
  • Cibus and lots of yummy treats in the kitchen

Additional Information:

Job Posted:
February 01, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Fullpath - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for AppSec Engineer

Appsec Engineer

This role will focus on preventing and protecting Fever from security threats, v...
Location
Location
Spain , Madrid
Salary
Salary:
Not provided
https://feverup.com/fe Logo
Fever
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on expertise in vulnerability management for cloud environments, containers, and applications
  • Proficiency in scripting for automation and security operations (Python, Go or similar)
  • Strong experience with AWS cloud infrastructure security including configurations, networking, Identities, etc.
  • Deep understanding of cloud security frameworks, best practices and secure architecture principles
  • Ability to analyze security threats and implement proactive defense mechanisms
  • Strong analytical and problem-solving skills
  • Ability to work cross-functionally to drive security initiatives
  • 4+ years of experience in cloud security and/or cybersecurity roles
  • Bachelor or Master’s Degree in Computer Science, Information Security, or another similar relevant degree (or equivalent experience in a technical security role)
  • Fluent in english
Job Responsibility
Job Responsibility
  • Manage and improve the vulnerability management process for cloud environments including containers, hosts and applications
  • Conduct regular security assessments to identify vulnerabilities and misconfigurations in the AWS ecosystem
  • Enforce AWS security best practices, including secure configurations, architecture and processes
  • Perform risk assessments based on cloud architecture best practices to provide technical security expertise to stakeholders in implementing secure solutions
  • Develop and deploy automated security solutions to improve vulnerability reporting, tracking and remediation processes
  • Collaborate with DevOps and engineering teams to integrate security best practices into cloud environments
  • Monitor performance of vulnerability management, secure configuration and architecture implementations
What we offer
What we offer
  • Opportunity to have a real impact in a high-growth global category leader
  • 40% discount on all Fever events and experiences
  • Position based in Madrid, home office friendly
  • Relocation package for international candidates
  • Responsibility from day one and professional and personal growth
  • Great work environment with a young, international team of talented people to work with
  • Health insurance and other benefits such as Flexible remuneration with a 100% tax exemption through Cobee
  • English Lessons
  • Gympass Membership
  • Possibility to receive in advance part of your salary by Payflow
  • Fulltime
Read More
Arrow Right

Security Engineer, AppSec and Cloud

The Security Engineer, AppSec and Cloud will be responsible for securing applica...
Location
Location
Salary
Salary:
Not provided
aciinfotech.com Logo
ACI Infotech
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in application or cloud security roles
  • Expertise in SSO, RBAC, and secrets management
  • Strong knowledge of cloud security controls (IAM, KMS, VPC, WAF)
  • Hands-on experience with threat modeling and vulnerability scanning
  • Experience partnering with engineers to implement secure defaults
  • Ability to translate risk into actionable remediations
  • Strong skills in documentation and incident response
Job Responsibility
Job Responsibility
  • Perform security reviews across code, infrastructure, and deployments
  • Implement SAST, DAST, and dependency scanning at scale
  • Harden identity, network, data, and secrets management
  • Define and enforce zero-trust security patterns
  • Conduct threat modeling workshops for critical flows
  • Drive secure SDLC adoption with automated checks
  • Partner with engineering to ensure secure-by-default practices
  • Fulltime
Read More
Arrow Right

Senior Engineer, Security

As a Senior Security Engineer you will be a subject matter expert responsible fo...
Location
Location
United States , Boston, MA
Salary
Salary:
Not provided
atscale.com Logo
AtScale
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years Security Engineering / AppSec experience in high-scale distributed systems
  • Experience securing both cloud and on-prem enterprise software deployments
  • Strong hands-on technical background: code, runtime debugging, containers, K8s, CI/CD
  • Expert level understanding in CVEs, vulnerability management, dependency management, SBOM
  • Experience building/operationalizing threat detection, telemetry, and security logging pipelines
  • Strong SOC 2 execution experience (control implementation + evidence + testable automation)
  • Able to work cross-functionally and influence
Job Responsibility
Job Responsibility
  • Hands-on development and tooling to secure code, containers, runtime, and deployment pipelines
  • Lead CVE remediation efforts and build sustainable CVE automation and gating
  • Implement security telemetry, malware detection, anomaly detection, and secure phone-home supportability for on-prem customers
  • Drive secure coding practices, static/dynamic analysis, threat modeling, and secure SDLC enablement
  • Collaborate with Platform, SRE, DevOps, and QA to harden infra, IAM, and default configurations
  • Participate deeply in code reviews, architecture reviews, and design reviews
  • Lead CrowdStrike SIEM integration efforts, including building custom connectors and data pipelines to enhance visibility, detection coverage, and security monitoring capabilities.
  • Work directly with Sales, Sales Engineering, and customers on security posture, audits, POCs, compliance reviews, and enterprise buyer security questions
  • Own security observability and monitoring, defining logs, metrics, alerts, and dashboards to ensure real-time visibility and rapid threat detection.
  • Manage and coordinate 3rd-party penetration testing engagements, scope definition, evidence delivery, and remediation plans
What we offer
What we offer
  • Competitive compensation, including equity.
  • Flexible, remote-friendly work environment with a strong culture of ownership and trust.
  • Unlimited PTO and competitive benefits.
  • The opportunity to directly shape AtScale’s growth by building the team that powers our next phase.
  • Fulltime
Read More
Arrow Right

Enterprise Sales Engineer HCL AppScan

Location
Location
Germany
Salary
Salary:
Not provided
actian.com Logo
Actian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • hands-on AppSec experience (AppScan or competitors)
  • speak German well
  • Fulltime
Read More
Arrow Right
New

Sales Manager - UKI & Nordics

GitGuardian is a global cybersecurity scale-up... Joining our European Sales tea...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
gitguardian.com Logo
GitGuardian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of sales management experience leading high-performing enterprise sales teams in cybersecurity, DevSecOps, or cloud security
  • Proven track record closing deals exceeding $500K ARR—both as an individual contributor and as a manager
  • Deep experience selling across EMEA, particularly in UKI and Nordics markets
  • Ability to engage CISOs, CIOs, AppSec, SOC, and Engineering personas with credibility and relevance
  • Expertise in value-based selling frameworks and coaching sales methodology
  • Strong forecasting discipline, territory planning, and pipeline management skills
  • Experience hiring, onboarding, and developing Account Executives in fast-growth environments
  • Hands-on leadership style—willing to roll up your sleeves and assist in deal cycles when needed
Job Responsibility
Job Responsibility
  • Build, coach, and scale a team of Account Executives to consistently exceed revenue targets
  • Lead by example: join high-stakes customer meetings, guide complex negotiations, and demonstrate value-based selling
  • Develop territory plans, account strategies, and quota assignments aligned with company growth objectives
  • Drive pipeline generation through structured coaching on outbound prospecting, social selling, and executive engagement
  • Deliver accurate forecasts and strategic insights to leadership on regional performance and GTM initiatives
  • Hire top sales talent and create a culture of accountability, collaboration, and continuous improvement
  • Maintain CRM hygiene and leverage tools (HubSpot, Gong, Apollo) to optimize team performance
  • Partner with Solution Engineering to win deals involving CISOs, AppSec leaders, and DevOps teams
  • Enable your team to navigate complex enterprise sales cycles with application security and DevSecOps buyers
What we offer
What we offer
  • Premium healthcare insurance (Allianz), 100% covered
  • Pension plan
  • PTOs, in addition to the public holidays
  • Referral bonus of 4000€ for any new Guardian we might hire thanks to you
  • Team building: monthly budget dedicated to each employee that you can spend as you wish, with colleagues
  • Remote policy: hybrid (3 days/week at the office in London)
  • Opportunities for career development in the long term
  • Fulltime
Read More
Arrow Right

Security Analyst, Bug Bounty

We’re seeking an experienced Security Analyst to join Shopify’s security organiz...
Location
Location
Canada
Salary
Salary:
Not provided
shopify.com Logo
Shopify
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong written communication skills
  • A track record of fast, high-quality problem solving, with good judgment around impact, severity, and next steps
  • Comfort operating in externally-facing workflows with security researchers, representing Shopify professionally and consistently
  • Operational discipline: you follow playbooks, improve them when they’re wrong or incomplete, and turn “institutional knowledge” into documentation
  • High attention to detail in notes, reproduction steps, evidence, and decision rationale
  • A data-informed mindset: you use metrics to quantify your throughput and quality, track trends, and help improve program health over time
  • A growth-and-multiplication approach: you mentor teammates, raise the bar, and develop deep expertise in at least one domain (vuln class, product area, triage workflow/tooling)
  • A strong sense of accountability: you take responsibility for the quality of your interactions and outcomes, and you’re ambitious about improving the security and experience we deliver
  • Strong working knowledge of web application security fundamentals (authn/authz, session management, injection, IDOR, SSRF, XSS, CSRF, access control, multi-tenant risk, etc.)
  • Demonstrated ability to reproduce vulnerability reports reliably and communicate impact precisely
Job Responsibility
Job Responsibility
  • Bug bounty report triage quality and timeliness (meet SLOs, keep queues healthy, reduce rework)
  • Reproducing and validating reported security issues (prove exploitability, confirm impact, confirm affected assets, confirm fixes via retest/validation)
  • Writing clear, friendly, high-signal communication to external researchers while representing Shopify well
  • Maintaining meticulous internal documentation and context so issues can be routed and resolved efficiently
  • Using data to quantify performance and program health (queue state, SLOs, throughput, trend reporting)
  • Partnering with AppSec engineering when a report requires deeper engineering expertise
  • Detect, evaluate, and help address security threats to Shopify and its merchants
  • develop security controls and protocols
  • perform security audits
  • conduct vulnerability assessments and penetration tests
Read More
Arrow Right
New

Senior Application Security (AppSec) Engineer

Location
Location
Japan , 東京23区
Salary
Salary:
10000000.00 - 16000000.00 JPY / Year
https://www.randstad.com Logo
Randstad
Expiration Date
April 30, 2027
Flip Icon
Requirements
Requirements
  • 3+ years of experience in the applications security (AppSec) domain, including hands-on experience in code analysis, threat modelling, and an understanding of pentesting
  • Familiarity with key application security principles, frameworks, and technologies (e.g., CWE, MITRE, OWASP, CIS Benchmarks)
  • Strong communication skills and confidence to work closely with leads, senior devs, and the CTO, while being mature enough to handle reasonable pushbacks
  • Experience building security controls into CI/CD pipelines (GitHub actions, CircleCI, GitLab CI/CD)
Job Responsibility
Job Responsibility
  • Flexible working style: Flex-time and hybrid working style
  • English & Japanese Useage: This position regularly coordinates with overseas stakeholders, and would be a great opportunity to utilize your English and Japanese abilities on a regular basis
  • Global Tech Environment: Support a diverse team in a industry-leading global company
What we offer
What we offer
  • 健康保険
  • 厚生年金保険
  • 雇用保険
  • 土曜日
  • 日曜日
  • 祝日
  • Fulltime
Read More
Arrow Right

Senior Application Security Engineer

This is one of our most critical roles, and it’s the first dedicated AppSec hire...
Location
Location
Netherlands , Amsterdam
Salary
Salary:
Not provided
wetravel.com Logo
WeTravel
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience securing SaaS product environments
  • Experience in cloud native and containerized environments
  • Strong CI/CD experience
  • Ability to read and review code (you do not need to write application code for us day to day)
  • Experience working with software engineers
  • Hands on security engineering experience with strong ownership and delivery
Job Responsibility
Job Responsibility
  • Work closely with the Platform team to improve security across infrastructure
  • Work closely with product engineering teams to analyze code for vulnerabilities
  • Build CI/CD automation to find security issues automatically
  • Analyze what we have today, find gaps, take ownership, and execute on improvements
  • Help shift engineering mindset to be more security focused, without blocking development
What we offer
What we offer
  • Competitive salary
  • Generous "Time to Recharge" policy — enjoy unlimited paid time off to rest, recharge, and show up as your best self
  • Work remotely for a maximum of 4 weeks per calendar year
  • 2-week cross-functional onboarding program
  • Cycle-to-work scheme (Swapfiets subscription) or commuting reimbursement
  • Tuesday team lunches and after-work social events
  • Beautiful office in central Amsterdam – rooftop garden and right by Rokin metro
  • Extensive paid family leave
  • Three paid volunteer days per year — take time to give back to causes you care about, on us
  • Cutting-edge equipment and tools to set you up for success
  • Fulltime
Read More
Arrow Right