Application Security Engineer

Summary

Join 10x Banking as an Application Security Engineer and contribute to a cloud-native core banking platform. You will integrate security into the software development lifecycle, manage application-level vulnerabilities, and support secure development practices. Collaborate with developers, DevOps, and product teams to embed security into every development stage. Analyze and triage vulnerabilities, provide guidance on secure coding practices, and automate security assessments and reporting. Track and report on vulnerability trends, support threat modeling, and maintain documentation. This fully remote role requires residency in Hungary.

Requirements

• Proficiency in scripting (Python preferred) for automation and analysis
• Ability to build Pipelines and Source Code Management: Jenkins, Git
• Understanding of cloud security concepts, ideally in AWS
• Strong grasp of application security principles, including authentication, authorization, and secure coding
• Experience with: SAST/SCA tools: Checkmarx, Snyk
• Container/Image Scanning: Trivy, Inspector
• Project Management and Collaboration: Confluence, Jira, Bitbucket
• Experience working in agile development environments
• Strong communication and collaboration skills
• Ability to translate technical findings into actionable guidance for developers
• Experience with tools such as: Jira, Bitbucket, Confluence

Responsibilities

• Operate and maintain application security tooling, including SAST and SCA platforms (e.g., Checkmarx, Snyk)
• Analyze and triage vulnerabilities, raise remediation tickets, and collaborate with engineering teams to drive resolution
• Provide guidance on secure coding practices and support developers in remediating security issues
• Automate elements of security assessments and reporting using scripting (preferably Python)
• Contribute to the integration of security tools into CI/CD pipelines (e.g., Jenkins), working with DevOps teams
• Track and report on vulnerability trends, providing insights to reduce risk exposure
• Support threat modelling and security reviews of new features and services
• Maintain documentation and knowledge sharing via Confluence
• Building vulnerability reports for various contexts and clients from source data

Preferred Qualifications

Familiarity with tools like Jenkins and Groovy

Benefits

This role is fully remote, but this employee must reside in Hungary for the duration of employment