Senior Application Security Engineer

We are looking for a Senior Application Security Engineer to be a part of the DEVTALENTS team and contribute to the development of truly amazing solutions for businesses all over the world.

Joining DEVTALENTS can be a life-changing decision for you, with endless benefits along the way. We provide top projects for which recruitment is not possible externally because of our wide range of partners. We value open and transparent communication, leveraging tools like Slack and generative AI to enhance collaboration and efficiency. We support continuous growth, encouraging you to step beyond your comfort zone and develop technically and personally. We are looking for an experienced Senior Application Security Engineer to join our team and provide technical leadership and mentorship.

Key Responsibilities

• Threat modeling & architecture reviews: Identify and prioritize security risks, shaping secure application design in collaboration with development teams.
• Security-focused decisions: Influence architectural choices to fortify security across various services and platforms.
• Tooling & automation: Develop and refine security-related tools, automation scripts, and processes to streamline workflows.
• Code reviews & penetration testing: Analyze Klarna services for vulnerabilities, providing actionable insights to engineering teams.
• Community engagement: Participate in our internal security community, sharing knowledge and driving security best practices.

Required Skills

• A pragmatic approach to resolving security challenges for maximum impact.
• Proficiency in at least one of JavaScript (Node.js), Python, Go, Erlang, Java, or Scala.
• In-depth knowledge of web/mobile application security, network security, OS internals, applied cryptography, or cloud computing (expertise in at least one area required).
• Strong English skills, both spoken and written, with the ability to collaborate effectively across teams.

Preferred Skills

• Hands-on experience in penetration testing, code/design review, threat modeling, or building security tools.
• Participation in Bug Bounty programs and Capture the Flag (CTF) events, showcasing a passion for continuous learning and real-world security challenges.