Application Security Engineer Sr

Encora Logo

Encora

πŸ“Remote - Brazil

Summary

Join Encora as an Application Security Engineer and lead a comprehensive security program. You will assess vulnerabilities, create remediation plans, implement OWASP-based security best practices, and establish automated security controls. Responsibilities include penetration testing, creating standardized procedures, developing secure coding training, and maintaining thorough documentation. This role requires strong experience with SAST/DAST tools, penetration testing, and various security frameworks. The position is full-time and remote, based in Brazil.

Requirements

  • Strong experience with SAST/DAST tools
  • Proficiency in penetration testing and vulnerability assessment
  • Knowledge of common security frameworks (OWASP, NIST)
  • Experience with security incident response
  • Strong programming knowledge
  • Understanding of CI/CD pipelines
  • Cloud security expertise (AWS preferred)
  • Database security knowledge
  • Experience implementing security automation tools
  • Familiarity with DevSecOps practices
  • Knowledge of security testing frameworks
  • Experience with code analysis tools
  • Experience in application security
  • Proven experience implementing security programs
  • Track record of security remediation projects
  • Experience creating and delivering security training

Responsibilities

  • Lead a comprehensive security program that begins with assessing vulnerabilities and creating prioritized remediation plans
  • Implement OWASP-based security best practices and threat modeling frameworks throughout the SDLC
  • Establish automated security controls through SAST/DAST integration in CI/CD pipelines
  • Help conduct penetration testing
  • Create standardized procedures for identifying and addressing security issues
  • Help develop and deliver secure coding training programs
  • Maintain thorough documentation, ensuring the organization maintains a strong security posture through both technical implementation and team enablement

Preferred Qualifications

  • CISSP, CSSLP, or equivalent
  • CEH or OSCP for penetration testing
  • Cloud security certifications (AWS Security)
  • OWASP certifications

Benefits

Work from home

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.