Key skills
MicroservicesAgileCI/CDOWASP
About this role
Role Overview
- The Application Security Engineer is responsible for embedding security into Keyloop’s application development lifecycle.
- Partner closely with engineering and product teams to identify, prioritise, and mitigate application-level risks.
- Provide hands-on guidance and coaching to developers on secure coding practices and design patterns.
- Design, operate, and improve application security testing capabilities, including SAST, DAST, SCA, and IAST.
- Own the application vulnerability management lifecycle and provide clear reporting on application security risk and trends.
Requirements
- 5+ years of experience in application security, secure software development, or related engineering roles.
- Strong understanding of modern application architectures, including web applications, APIs, and microservices.
- Hands-on experience with application security testing tools (SAST, DAST, SCA, etc.).
- Experience integrating security tooling into CI/CD pipelines.
- Solid understanding of common vulnerabilities (e.g., OWASP Top 10) and secure coding practices.
- Experience working in Agile and DevOps environments.
Tech Stack
- Microservices
Benefits
- An inclusive environment to thrive
- Casual dress code
- Competitive salary