Back to search
BairesDev Linkedin · Posted 5d ago

AppSec Engineer - Remote Work | REF#297495

Colombia

Linkedin
Continue to application Add your email once, then Caio opens the original posting.

Indexed description

At BairesDev®, we've been leading the way in technology projects for over 15 years. We deliver cutting-edge solutions to giants like Google and the most innovative startups in Silicon Valley.

Our diverse 4,000+ team, composed of the world's Top 1% of tech talent, works remotely on roles that drive significant impact worldwide.

When you apply for this position, you're taking the first step in a process that goes beyond the ordinary. We aim to align your passions and skills with our vacancies, setting you on a path to exceptional career development and success.

As an AppSec Engineer, you will champion security across the application layer, ensuring that robust protection is woven into the software development lifecycle. You will act as a security-focused partner for engineering teams, helping them navigate complex vulnerability landscapes while maintaining development velocity.

What You'll Do

  • Perform comprehensive secure code reviews and architectural assessments to identify potential threats in web applications and APIs.
  • Execute and manage static and dynamic analysis (SAST/DAST) workflows to proactively detect and remediate vulnerabilities.
  • Lead threat modeling sessions using frameworks like STRIDE to map out trust boundaries and prioritize security controls.
  • Integrate automated security testing into CI/CD pipelines to ensure continuous protection without creating bottlenecks.
  • Provide expert guidance and mentorship to developers on secure coding practices and the latest OWASP standards.
  • Stay current with the evolving threat landscape to recommend and implement resilient defense strategies across the organization.

What We Are Looking For

  • 4+ years of experience in Application Security, Software Engineering, or Cybersecurity.
  • Proven expertise in application-layer security including threat modeling and secure code review.
  • Proficiency with SAST and DAST tools such as Semgrep, SonarQube, Snyk, or OWASP ZAP.
  • Deep understanding of the OWASP Top 10 and secure software development lifecycle (SDLC) practices.
  • Strong background in identifying and remediating vulnerabilities within web applications and APIs.
  • Advanced proficiency in English.

How we do make your work (and your life) easier:

  • 100% remote work (from anywhere).
  • Excellent compensation in USD or your local currency if preferred
  • Hardware and software setup for you to work from home.
  • Flexible hours: create your own schedule.
  • Paid parental leaves, vacations, and national holidays.
  • Innovative and multicultural work environment: collaborate and learn from the global Top 1% of talent.
  • Supportive environment with mentorship, promotions, skill development, and diverse growth opportunities.

Join a global team where your unique talents can truly thrive and make a significant impact!

Apply now!

Free. 20 seconds. No password. See every match in this search.

Create a free Caio profile to unlock more results and save your role and location preferences.

Unlock free search
Want help applying to roles like this? Search Caio for free. If CV tailoring and application tracking get heavy, Full Caio Agent adds a human specialist.
View Full Agent