Browse
···
Log in / Register
Job Summary: We are seeking an Application Security Specialist to ensure the security of our solutions and collaborate with development teams in international environments. Key Highlights: 1. Participation in high-impact international projects 2. Innovative and collaborative technological environment 3. Professional growth opportunities and certifications **Application Security Specialist (AppSec)** Spain / Remote At Excelia, we are looking for an **Application Security Specialist** with experience in application security and DevSecOps, who will contribute to ensuring the quality and security of our solutions while closely collaborating with development teams in international environments. We seek a candidate with a global vision of technologies, processes, and the software lifecycle—capable of performing security testing, providing specialized technical support, and overseeing the quality of security practices throughout development. Your Mission Ensure application security across the entire software development lifecycle (SDLC) by conducting verification testing, threat modeling, and utilizing security analysis tools—as well as supporting and supervising mid- to senior-level professionals to uphold the highest quality standards. Responsibilities * Execute security tests on applications and verify correct implementation of security controls. * Collaborate with development teams to identify and mitigate vulnerabilities. * Participate in **threat modeling** activities and risk assessments. * Supervise and support mid-level professionals in executing security tasks. * Integrate security practices into **CI/CD** environments and DevSecOps processes. * Perform analyses using SAST, DAST, SCA, and other security solutions. * Ensure compliance with security standards and best practices. * Collaborate on international projects and within multidisciplinary environments. Requirements * At least **4 years of experience in Application Security projects**. * Experience working with: + CI/CD and code repositories + DevSecOps processes + Penetration testing and security scanning tools + Security assessments across the SDLC * Knowledge and experience with standards and methodologies such as: + OWASP (Top 10, ASVS, WSTG) + NIST, SANS CIS Top 20, CSA + ISO 27001, ISO 20000, PCI-DSS, GDPR, SOX, among others * Experience with tools such as: + Burp Suite + Fortify + Invicti + Checkmarx * Familiarity with SAST, DAST, SCA/SBOM, CWPP, and WAF tools. * Experience in threat modeling. * English proficiency at B2 level or higher. * Experience working on international projects. Preferred Qualifications * University degree in Computer Science, Telecommunications, or related field. * Experience across multiple sectors or complex environments. * Knowledge of advanced web security analysis. * Experience in cloud environments or modern architectures. What We Offer * Participation in high-impact international projects. * Innovative and collaborative technological environment. * Professional growth opportunities and certifications. * Remote work. * Integration into a specialized cybersecurity team. If application security excites you and you wish to join an evolving international environment, we want to meet you!
