Senior Application Security Engineer

Project Description

One of the world's largest providers of products and services to the energy industry has a need to develop, support and integrate software system in Oil & Gas domain.

You will be a member of a cross functional team.

Key project stakeholders are open for innovative ideas.

Project is based on SCRUM methodology.

This is a great opportunity to work in an international team, apply and learn modern IT technologies Responsibilities:

Application Security with strong AI/ML security exposure

Threat modeling and risk assessment for AI systems, APIs, and cloud-native applications

Protection against prompt injection, adversarial ML, data poisoning, and model abuse

Secure SDLC and CI/CD integration, including MLOps pipelines

Hands-on experience with SAST, DAST, SCA, container scanning, and security automation

Strong collaboration with development and data science teams Mandatory Skills Description:

5+ years in Application Security, with at least 1-2 years focused on AI/ML security

Strong secure coding and vulnerability management background (OWASP Top 10)

Experience with cloud platforms (AWS and/or Azure)

Strong programming skills in Python or Java

Familiarity with AI platforms such as Amazon Bedrock, SageMaker, or Spark

Strong communication skills Nice-to-Have Skills Description:

Good knowledge of Microsoft Active Directory services

Firewall and security group administration practical experience.

Good understanding of AICPA SOC2 controls and processes.

Thorough knowledge of network security and protocols.

Knowledge of cryptography protocols and hands-on experience in SSL certificates generation.

Penetration testing hands-on experience in Azure and AWS cloud environments and Kubernetes clusters.

Web and desktop applications penetration testing hands-on experience.