Senior Application Security Engineer

Job not on LinkedIn

🕒 May 20

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Deimos

Deimos

51 - 200 employees

Cloud

Deimos is a cloud solutions provider that specializes in helping businesses securely navigate and optimize their cloud environments. Led by an experienced team of software architects, site reliability engineers, and security experts, Deimos offers a wide range of cloud services including cloud migrations, security assessments, and infrastructure modernization. The company works with all major public cloud platforms such as Google Cloud Platform (GCP), Amazon Web Services (AWS), Microsoft Azure, and Huawei Cloud, aiming to tailor solutions to each client's unique needs. Deimos is particularly focused on cloud security and managed platforms, ensuring that security is an integral part of every project, and offers professional services to provide flexible, scalable cloud-native infrastructure management. With a strong presence across Africa, Deimos serves clients globally, providing the expertise needed to implement and maintain secure, efficient cloud systems.

📋 Description

• Defining the security standard for our product-team deployments and applications. • Integrating and optimising security tools (SAST, SCA, Secret Detection) into developer workflows. • Working with product teams to architect and build secure frameworks and patterns, reducing their future cognitive load. • Automating remediation for common security issues across environments. • Designing and deploying AI/LLM models and tooling for security-focused change reviews. • Driving developer engagement with security through initiatives like Security Champions programmes, workshops, lunch-and-learns, and the security health score initiative. • Collaborating with product teams on threat modelling and translating compliance requirements (ISO 27001, SOC 2) into clear technical specs. • Hardening CI/CD pipelines and ensuring actionable, relevant security checks. • Working with Security Operations Engineers to automate security incident triage, removing noise to prioritise high-signal alerting.

🎯 Requirements

• Bachelor's degree in Computer Science or a related Software Engineering field, or equivalent practical experience. • A minimum of 5 years of experience in Software Engineering or DevOps, with at least 3 of those years specifically focused on application security. • Strong communication skills to translate technical vulnerabilities into business and engineering impact. • Experience with cloud security (AWS) and Infrastructure as Code (Terraform/CloudFormation). • Proficient in architecting and developing secure applications (preferably in Java). • Proficient in scripting (Python, Bash, Go) for automation of security tasks. • Deep understanding of CI/CD systems and embedding security checks without slowing delivery. • Proven ability to independently define security standards, drive adoption across engineering teams, and manage a Security Champions programme. • Advantageous: AppSec fundamentals (OWASP Top 10, dependency management, OAuth2/OIDC), experience with SonarQube and CrowdStrike.

🏖️ Benefits

• Flexibility and the freedom to work remotely. • Work-life balance where you are not expected to work over weekends or after hours. • A forward thinking remote company that knows how important it is to stay connected as one team, by providing virtual social platforms for employee engagement. • A monthly work from home allowance which you can use to set yourself up to work comfortably from home. • A MacBook or Windows laptop for you to do your best work on. • Become part of a team of exceptionally clever and talented people who like to share their knowledge and learnings. • We support your career growth and love to celebrate your successes and advancement!

Apply Now