Job Title: Software Security Specialist
Job Description:
We are seeking a highly skilled Software Security Specialist to join our team. The successful candidate will have a strong background in software security and a proven track record of identifying and mitigating vulnerabilities.
The ideal candidate will have experience with modern application architectures, APIs, and cloud-native services. They will also be familiar with common vulnerabilities and secure design concepts, as well as exposure to CI/CD tooling and automated security checks.
The Software Security Specialist will work closely with development teams to integrate security checks and guardrails into CI/CD pipelines, support the design and validation of application security controls, and participate in threat-model discussions and design reviews.
Key Responsibilities:
* Assist with integrating security checks and guardrails into CI/CD pipelines
* Support development teams with secure coding patterns, reviewing findings, and suggesting remediation paths
* Run initial analysis on SAST, DAST, SCA, and IaC scanner output, escalating and documenting where needed
* Participate in threat-model discussions and design reviews under guidance from senior engineers
* Help strengthen container and cloud security practices (Docker, Kubernetes, AWS)
* Contribute to building internal security tooling, scripts, and automation for vulnerability triage and reporting
* Review API behavior, identity flows, and service configurations for common weaknesses
* Support secure deployment processes and help troubleshoot security-related build or runtime issues
* Maintain internal documentation-patterns, checklists, diagrams, and reference notes
* Assist with compliance-related evidence gathering and technical controls alignment
Required Skills and Qualifications:
* 1-3 years in software security or a similar technical discipline
* Ability to work with at least one programming language (Java, Python, JavaScript, C#)
* Familiarity with modern application architectures, APIs, and cloud-native services
* Understanding of common vulnerabilities and secure design concepts (OWASP Top 10, ASVS)
* Exposure to CI/CD tooling and automated security checks
* Basic understanding of containers, orchestration, and cloud platforms
* Comfortable reading logs, reviewing code snippets, and interpreting scanner results
* Clear written communication-notes, diagrams, remediation suggestions
Benefits:
This is a fantastic opportunity to join a dynamic team and contribute to the development of cutting-edge software security solutions. If you are passionate about software security and want to make a real impact, we encourage you to apply.