We're Hiring: Application Security Specialist (Porto - Hybrid)
Are you passionate about building secure software and staying ahead of the latest vulnerabilities? We are looking for an Application Security Specialist to join a high-impact project in Porto, ensuring that security is integrated into every step of the development lifecycle.
This is a key role for a technical expert who thrives in identifying risks, guiding developers, and implementing robust security frameworks in modern architectures.
The Challenge You will be the guardian of application integrity. Your goal is to move beyond "detecting" issues, you will be responsible for analyzing, tracking, and driving the remediation of vulnerabilities in a fast-paced, regulated environment.
What you will do:
* Secure SDLC: Lead the integration of security practices within the development lifecycle.
* Vulnerability Management: Analyze and remediate security findings using SAST, DAST, and SCA tools, while interpreting pentest results.
* Modern Security: Address vulnerabilities in Cloud environments (AWS/Azure) and microservices/API architectures.
* Technical Guidance: Collaborate directly with engineering teams to provide actionable security insights and maintain the OWASP Top 10 / API Top 10 standards.
Profile Requirements:
* Experience: Strong background in Application Security, DevSecOps, or Cybersecurity, with deep knowledge of OWASP standards.
* Technical Stack: Proficiency in security testing tools, Cloud security (AWS/Azure), and tracking tools like JIRA.
* Communication: Exceptional ability to communicate effectively with technical teams and stay organized in dynamic settings.
* Mindset: Analytical, detail-oriented, and proactive. You are someone who can work autonomously and handle the pressure of highly regulated sectors.
* Nice to have: Experience with Threat Modelling, OWASP ASVS, and automated security testing.
Work Setup:
Location: Porto, Portugal
Model: Hybrid
Type: Full-time (Outsourcing Project)