Application Security Engineer

Our client is a global leader in the aviation sector, driving a digital-first transformation powered by cloud technologies, data innovation, and machine learning. With a bold vision to redefine how data empowers smarter decisions, they are building a modern engineering ecosystem that fuels business agility and growth at scale.

At the heart of this journey is a vibrant, inclusive, and forward-thinking technology team that thrives on curiosity, collaboration, and continuous learning. From cloud-native architectures to real-time data pipelines, team members are shaping solutions that impact millions of lives-all while working in an environment that values diversity, wellbeing, and career development.

The Job :

We are Seeking to identify a Security Application Engineer, responsible for developing solutions to automate the security operation, particularly in security control validation. The ideal candidate will have a strong background in AWS cloud services, proficiency in programming and scripting, and experience with CI/CD pipelines and security best practices.

Role & Responsibilities :

- Work closely with other engineers, analysts, business and systems analysts to define and implement technical solutions to automate security management process

- Provide guidance on industry best practices, guidelines and governance for web applications and web sites.

- Identify areas for modification in existing programs and subsequently developing these modifications. Test and evaluate new programs.

- Write and implement efficient code.

- Help improving quality assurance procedures.

- Maintain and upgrade existing systems.

- Help developing and deploying software tools, processes and metrics.

- Develop pipeline templates, software components or tools to prevent developers from introducing security vulnerabilities.

Your Profile :

- An Engineer with 5+ years of experience in application security or software development.

- 3 years of hands-on experience with AWS core services, including EC2, S3, Lambda, CloudWatch, and DynamoDB.

- Strong proficiency in multiple programming language (e.g., Python, JavaScript, Java, .NET) and shell scripting (Bash/PowerShell).

- Proven track record of delivering high-quality code and applications within project timelines.

- 3+ years of experience implementing and maintaining CI/CD pipelines and configuration management tools in multi-account environments.

- Familiarity with Harness and/or GitHub Actions.

- Working knowledge of OWASP Top 10 security risks and their mitigations.

- Experience with security scanning tools such as Wiz, Veracode, or similar platforms.

- Demonstrated ability to remediate security vulnerabilities identified by scanning tools.