Application Security Engineer Senior

Encora Logo

Encora

πŸ“Remote - Brazil

Summary

Join Encora as an Application Security Engineer in Brazil and work remotely full-time. Lead a comprehensive security program, assessing vulnerabilities, creating remediation plans, and implementing OWASP-based security best practices. Implement automated security controls through SAST/DAST integration in CI/CD pipelines, conduct penetration testing, and create standardized procedures for addressing security issues. Develop and deliver secure coding training programs and maintain thorough documentation. This role requires strong experience with SAST/DAST tools, penetration testing, and security frameworks like OWASP and NIST. Cloud security expertise (AWS preferred) and database security knowledge are also essential.

Requirements

  • Strong experience with SAST/DAST tools
  • Proficiency in penetration testing and vulnerability assessment
  • Knowledge of common security frameworks (OWASP, NIST)
  • Experience with security incident response
  • Strong programming knowledge
  • Understanding of CI/CD pipelines
  • Cloud security expertise (AWS preferred)
  • Database security knowledge
  • Experience implementing security automation tools
  • Familiarity with DevSecOps practices
  • Knowledge of security testing frameworks
  • Experience with code analysis tools
  • Experience in application security
  • Proven experience implementing security programs
  • Track record of security remediation projects
  • Experience creating and delivering security training

Responsibilities

  • Lead a comprehensive security program that begins with assessing vulnerabilities and creating prioritized remediation plans
  • Implement OWASP-based security best practices and threat modeling frameworks throughout the SDLC
  • Establish automated security controls through SAST/DAST integration in CI/CD pipelines, help conduct penetration testing, and create standardized procedures for identifying and addressing security issues
  • Develop and deliver secure coding training programs and maintain thorough documentation, ensuring the organization maintains a strong security posture through both technical implementation and team enablement

Preferred Qualifications

  • CISSP, CSSLP, or equivalent
  • CEH or OSCP for penetration testing
  • Cloud security certifications (AWS Security)
  • OWASP certifications

Benefits

Work from home

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.

Similar Remote Jobs