Related skills
node.js react aws kubernetes ruby on railsπ Description
- Own vulnerability management end-to-end across engineering.
- First responder on security topics incl bug bounty, pen tests, incidents
- Maintain security tooling (X-Ray, SonarCloud, ZAP) and CI/CD checks
- Embed security guardrails into dev workflows, incl AI-assisted and Agentic practices
- Drive secure coding standards and OWASP Top 10 across engineering
- Support ISO 27001 compliance program, ensure controls in place and improved
π― Requirements
- 6+ years of software engineering or application security; strong coding across languages
- Strong TypeScript/Node.js; knowledge of Ruby on Rails, React, Kubernetes, AWS
- OWASP Top 10, vulnerability mgmt, secure SDLC, threat modeling
- SAST/DAST/SCA tooling; experience with X-Ray, SonarCloud, ZAP
- Experience with bug bounty programs & penetration testing engagements
- ISO 27001 experience; monitoring tools like Vanta
- Experience integrating security into CI/CD pipelines and developer workflows
- Proactive security mindset; drive initiatives to completion
π Benefits
- Exciting technical challenges daily
- Competitive salary and benefits
- Flexible working hours
- Yearly learning budget for conferences and training
- International company retreats
- Home IT equipment budget yearly
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!