Application Security Engineer

We're fast learners, hard workers, natural collaborators... and we Make Modern Happen!

Our ambition is to unlock the potential of our digital world so that organisations everywhere can innovate and thrive securely.

We aim to achieve this goal by bringing together the world’s most talented people and the most powerful technologies, combining them to address our customers' challenges and to build something stronger together.

If you share our vision, join us!

Right now, we are looking for a Application Security Engineer to integrate our internal team, based in Porto.

Your
responsibilities include:

• Define and
  standardize secure software development lifecycles (S -SDLC) across multiple
  development teams.
  
• Integrate
  and manage security testing tools (SAST, DAST, SCA) within CI/CD pipelines.
  
• Drive
  vulnerability management initiatives across cloud environments and Kubernetes
  clusters.
  
• Maintain
  and automate infrastructure security controls, including WAFs and network
  policies.
  
• Guide
  development and DevOps teams on security best practices, ensuring compliance
  with frameworks like DORA, CIS Benchmarks, and OWASP.
  

 You must
have:

• A degree in
  Computer Science, Cybersecurity, or an equivalent practical background.
  
• Solid
  professional experience as a Security Engineer, heavily focused on Application
  Security and DevSecOps methodologies.
  
• Hands -on
  experience with containerization and orchestration tools.
  
• Strong
  programming and scripting skills (such as Python, Bash, Java, or Go).
  
• Understanding
  of industry security standards, including OWASP Top 10 and ISO 27001.
  
• Proficiency
  in English to communicate effectively with technical and executive
  stakeholders.
  

 We
value:

• Intention
  to or completion of industry certifications like CKA (Certified Kubernetes
  Administrator) or CKS (Certified Kubernetes Security Specialist).
  
• A proactive
  approach to learning and adapting to new cloud technologies.
  
• Strong
  analytical thinking for threat detection and analysis.
  
• Excellent
  communication skills to convey technical concepts.
  
• A love for
  challenges and continuous learning.
  
• A proactive
  approach to aligning security requirements with technological modernization and
  business goals.
  

• Regular professional development;
  
• Certification paths resources;
  
• Regular teambuilding programs;
  
• Friendly workplace.
  

Claranet: Make Modern Happen!