Senior Application Security Engineer

Project description

One of the world's largest providers of products and services to the energy industry has a need to develop, support and integrate software system in Oil & Gas domain.

You will be a member of a cross functional team.

Key project stakeholders are open for innovative ideas.

Project is based on SCRUM methodology.

This is a great opportunity to work in an international team, apply and learn modern IT technologies

• Application Security with strong AI/ML security exposure
  
  Threat modeling and risk assessment for AI systems, APIs, and cloud-native applications
  
  Protection against prompt injection, adversarial ML, data poisoning, and model abuse
  
  Secure SDLC and CI/CD integration, including MLOps pipelines
  
  Hands-on experience with SAST, DAST, SCA, container scanning, and security automation
  
  Strong collaboration with development and data science teams

Must have

• 5+ years in Application Security, with at least 1-2 years focused on AI/ML security
  
  Strong secure coding and vulnerability management background (OWASP Top 10)
  
  Experience with cloud platforms (AWS and/or Azure)
  Strong programming skills in Python or Java Familiarity with AI platforms such as Amazon Bedrock, Sage Maker, or Spark Strong communication skills

Good knowledge of Microsoft Active Directory services

Firewall and security group administration practical experience.

Good understanding of AICPA SOC2 controls and processes.

Thorough knowledge of network security and protocols.

Knowledge of cryptography protocols and hands-on experience in SSL certificates generation.

Penetration testing hands-on experience in Azure and AWS cloud environments and Kubernetes clusters.

Web and desktop applications penetration testing hands-on experience.