Senior Application Security Engineer

One of the world's largest providers of products and services to the energy industry has a need to develop, support and integrate software system in Oil & Gas domain.You will be a member of a cross functional team.Key project stakeholders are open for innovative ideas.Project is based on SCRUM methodology.This is a great opportunity to work in an international team, apply and learn modern IT technologies

• Application Security with strong AI/ML security exposureThreat modeling and risk assessment for AI systems, APIs, and cloud-native applicationsProtection against prompt injection, adversarial ML, data poisoning, and model abuseSecure SDLC and CI/CD integration, including MLOps pipelinesHands-on experience with SAST, DAST, SCA, container scanning, and security automationStrong collaboration with development and data science teams

Must have

• 5+ years in Application Security, with at least 1-2 years focused on AI/ML securityStrong secure coding and vulnerability management background (OWASP Top 10)Experience with cloud platforms (AWS and/or Azure)Strong programming skills in Python or JavaFamiliarity with AI platforms such as Amazon Bedrock, SageMaker, or SparkStrong communication skills

Good knowledge of Microsoft Active Directory servicesFirewall and security group administration practical experience.Good understanding of AICPA SOC2 controls and processes.Thorough knowledge of network security and protocols.Knowledge of cryptography protocols and hands-on experience in SSL certificates generation.Penetration testing hands-on experience in Azure and AWS cloud environments and Kubernetes clusters.Web and desktop applications penetration testing hands-on experience.