Application & Cloud Security Engineer (DevSecOps)

About the Role

Key Responsibilities

• Secureweb applicationsagainst vulnerabilities
• Implementapplication security best practices (OWASP Top 10)
• Integratesecurity into CI/CD pipelines(SAST, DAST, secret scanning, image scanning)
• Managecloud security controlsacross AWS/Azure/GCP
• Work onIAM, RBAC, and identity security
• Conductapplication vulnerability assessments and remediation support
• Secure APIs, authentication systems, and backend services
• Collaborate with DevOps and engineering teams forDevSecOps implementation
• Assist in securingblockchain components (nodes, wallets, APIs)
• Maintainsecurity documentation and audit evidence
• SupportISO 27001 and compliance processes

Must-Have Qualifications

• 8+ years inapplication security, cloud security, or DevSecOps
• Experience securingMERN stack applications
• Strong knowledge ofOWASP Top 10 and secure coding practices
• Hands-on experience withCI/CD tools (GitLab, Azure DevOps)
• Experience withcloud platforms (AWS, Azure, or GCP)
• Understanding ofAPI security, authentication, and authorization
• Experience withsecurity tools (SAST, DAST, SCA)
• Knowledge ofIAM and cloud identity systems
• Basic scripting (Python, Bash)

Nice-to-Have

• Experience withcontainer/Kubernetes security
• Exposure toblockchain security concepts
• Familiarity with tools likeBurp Suite, OWASP ZAP, Prisma Cloud, Aqua
• Certifications likeCEH, AWS Security Specialty, AZ-500, CISSP

Why Join Us

• Opportunity to work onsecure application architecture in FinTech
• Hands-on experience withDevSecOps and cloud-native security
• Clear growth path towardCloud Security Engineer / DevSecOps Lead