Senior Application Security Engineer Ireland
3 weeks ago
As an Application Security Engineer at Brightflag, you will play an integral role in the success of our engineering team and help ensure that features are delivered securely. We have a number of high-profile customers across Europe, the US, and Australia, and we are growing quickly. Our engineers take ownership of their work, solve complex problems creatively, and contribute to building exceptional products. We build products using an Agile, process-driven methodology. As a subject matter expert, you will work with the Product & Engineering teams to embed security in requirements, technical designs, and implementation to ensure alignment with our InfoSec and Engineering security standards.
What You Will Be Doing- Drive our Secure By Design approach: embed security into the SDLC by reviewing requirements with security impact, assessing technical designs, and performing secure code reviews.
- Conduct penetration testing on application features for vulnerabilities, including OWASP Top 10 issues and emerging threats, and work with engineering to remediate findings.
- Improve DevOps security by integrating static analysis (SAST), dependency scanning, dynamic testing (DAST), and security automation into CI/CD, ensuring security across our tech stack (includes Java, Spring, MySQL, Elastic, AWS).
- Develop and deliver security training and mentoring to software engineers, ensuring security knowledge is shared across teams.
- Secure the integration of AI/ML-based features by applying security best practices to data-driven applications and mitigating risks unique to LLMs and data pipelines.
- Collaborate with our DevOps and AWS infrastructure security team, supporting testing and scanning of vulnerabilities in the application tech stack.
- Support and guide the external penetration testing process, ensuring findings translate into actionable security improvements.
To be successful in the role, you need:
- 5+ years’ experience in application security, penetration testing, or a similar security-focused engineering role.
- Bachelor’s degree in computer science or a related field, or equivalent industry certifications.
- Deep understanding of web application security, threat modelling, and secure software development practices.
- Strong experience embedding security tools (SAST, DAST, dependency scanning) into CI/CD pipelines and hands-on experience in penetration testing of web applications. Excellent knowledge of OWASP vulnerabilities and secure coding principles.
- Familiarity with emerging cybersecurity exploits, attack techniques, and mitigation strategies.
- In-depth knowledge of web application architectures and secure software development practices.
- Strong understanding of network protocols, cryptographic technologies, and authentication/authorisation models.
- Proficiency in Java and secure coding practices.
- Strong coding, scripting, and automation experience, with an emphasis on reducing security toil through tooling.
- Ability to work independently as the expert in application security.
- Experience working as a trusted partner to software engineers to drive security adoption effectively and in a collaborative manner.
- Strong and pragmatic problem-solving capabilities so that security enables development with security and engineering needs being balanced effectively.
- Ability to take ownership of security beyond identifying problems; this person is accountable for ensuring security is implemented correctly.
- Excellent communication skills, with the ability to clearly explain security concepts to software engineers, DevOps, and leadership without unnecessary complexity.
The following are a bonus
- Experience with Java web applications, Spring, and Spring Security.
- Experience securing SaaS multi-tenant applications.
- Experience with AWS or other cloud platforms.
- High-growth startup experience.
- Security certifications (e.g., OSCP, CISSP, AWS Security Specialty, Google Professional Cloud Security Engineer, GIAC GWAPT, GIAC GPEN).
- A huge opportunity to make a real impact, to shape what we do and where we are going.
- The exposure and challenge you need to learn, grow and progress your career in a rapidly growing scale-up.
- Complex technical and business problems to solve and the trust and autonomy you need to go and solve them.
- A sound, helpful team, in a friendly, values-driven and inclusive environment.
- Share options.
- 25 days holidays + 4 company ‘Reset’ days throughout the year.
- Comprehensive health insurance, life insurance and long term illness/income protection.
- Fully flexible work location and work patterns so you can balance life at home with life at work - come to the office, work at home… or enjoy a blend of both at your discretion.
- Learning subsidy of €2,000 annually, to spend as you wish, plus study and examination leave where applicable. Our ‘bookworm’ program also enables you to order a book a month.. on us
- Access to Pluralsight - the on demand learning platform for tech teams.
- The Tax-Saver or Cycle-to-Work Scheme.
- Home office set-up supports.
We are a diverse and inclusive bunch of people. We welcome diverse perspectives and people who make every day count and strive for constant improvement. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race.
This role offers a flexible work location across Ireland. Whether that be in the office, remote from anywhere in Ireland, or a mix of office/remote work in Ireland, you choose what works best for your lifestyle.
Your time is valuable. To help with your application, we advise that regrettably we cannot offer work permit sponsorship/ self sponsorship for this role.
About BrightflagHello, We’re Brightflag - one of the fastest-growing tech startups in the legal world - we’re on a mission to transform legal operations. Our patented AI-powered software combined with a best-in-class Customer Success team empowers corporate legal teams to do better, no matter the starting point. Our SaaS platform was the first to apply artificial intelligence and machine learning to legal operations management and has invested more than 100,000+ hours in its development. Using Brightflag, corporate legal teams achieve visibility into their operations, streamline internal workflows, and engage with outside counsel more efficiently. You can learn more about Brightflag Here.
Apply for this job*
indicates a required field
#J-18808-Ljbffr-
Senior Application Security Engineer
4 weeks ago
ireland GemPool Recruitment Full timeGet AI-powered advice on this job and more exclusive features.Senior Application Security Engineer at GemPool RecruitmentGemPool is a specialised IT recruitment agency that provides top IT jobs.We are currently hiring for one of our clients for the position of Senior Application Security Engineer. This is a full-time opportunity to play a pivotal role in...
-
Senior Application Security Engineer
4 weeks ago
ireland Tbwa ChiatDay Inc Full timeSenior Application Security Engineer (PHP)Remote - IrelandAbout LastPassLastPass is a leader in password and identity management, making it easier to log into life and work. Trusted by 100,000 businesses and millions of users, LastPass combines advanced security with effortless access for individuals, families, small business owners, and enterprise...
-
Senior Application Security Engineer
3 weeks ago
ireland Poppulo Full timeAre you searching for an opportunity to play a key role in driving the dramatic growth of a highly successful software company?At Poppulo, we’re working on what’s next in communications and workplace technology. As a pioneer in this industry, we understand that meaningfully reaching every employee is hard. And so is managing office space in a hybrid...
-
Senior Application Security Engineer
4 weeks ago
ireland Brightflag Full timeThe OpportunityAs an Application Security Engineer at Brightflag, you will play an integral role in the success of our engineering team and help ensure that features are delivered securely. We have a number of high-profile customers across Europe, the US, and Australia, and we are growing quickly. Our engineers take ownership of their work, solve complex...
-
Senior Application Security Engineer
4 weeks ago
ireland LastPass Full timeAbout LastPassLastPass is a leader in password and identity management, making it easier to log into life and work. Trusted by 100,000 businesses and millions of users, LastPass combines advanced security with effortless access for individuals, families, small business owners, and enterprise professionals. With LastPass, important credentials are protected...
-
Senior Application Security Engineer
4 weeks ago
ireland Malwarebytes Full timeDescriptionMalwarebytes believes that when people and organizations are free from threats, they are free to thrive. Founded in 2008, CEO Marcin Kleczynski had one mission: to rid the world of malware. Today, Malwarebytes has grown beyond malware remediation to ensuring cyberprotection for everyone, providing device protection, privacy, and prevention...
-
Senior Security Engineer
4 weeks ago
ireland Reperio Human Capital Full timeLocation: Cork City, Cork, Republic of IrelandType: PermanentStart: ASAPSenior Security EngineerJob ID: 106825Desired Skills:Cyber, Security, Network Security, Firewalls, CorkWe are looking for a talented Senior Security Engineer to join a multinational company in the communications space, focusing on their IT Security Team. This role will involve working on...
-
Senior IT Security Engineer
4 weeks ago
ireland MACOM Technology Solutions Holdings Full timeCompany Overview:MACOM designs and manufactures semiconductor products for Data Center, Telecommunication and Industrial and Defense applications. Headquartered in Lowell, Massachusetts, MACOM has design centers and sales offices throughout North America, Europe and Asia. MACOM is certified to the ISO9001 international quality standard and ISO14001...
-
Senior Security Engineer, AWS Security
3 weeks ago
ireland Amazon Full timeCome and build innovative services that protect our cloud from advanced security threats!As a Senior Security Engineer on our team, you'll help build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon's infrastructure, including advanced persistent threats. You'll work with data scientists, software development...
-
Senior Analyst, Security Compliance Remote
3 weeks ago
ireland Twilio Full timeJoin the team as Twilio’s next Senior Analyst, Security ComplianceWho we areAt Twilio, we’re shaping the future of communications, all from the comfort of our homes. We deliver innovative solutions to hundreds of thousands of businesses and empower millions of developers worldwide to craft personalized customer experiences.Our dedication to remote-first...
-
Senior Offensive Security Engineer
3 weeks ago
ireland Tree Trust Full timeGlobal IT, Security, & Business Systems, Amsterdam, Netherlands / Dublin, IrelandSurveyMonkey is the world’s most popular platform for surveys and forms, built for business—loved by users. We combine powerful capabilities with intuitive design, effectively serving every use case, from customer experience to employee engagement, market research to payment...
-
IT Security Engineer
3 weeks ago
Ireland Reperio Human Capital Full timeIT Security Engineer 101056 Desired skills: Security Engineer, Cloud Security, Penetration Testing, Threat Intelligence, Vulnerability Scanning Remote (Munster, Ireland) / 6-month contract My client is seeking a highly skilled and motivated IT Security Engineer to join their dynamic team in the financial services sector. The role will be for an...
-
Application Security Architect
4 weeks ago
ireland ReversingLabs Corporation Full timeAt ReversingLabs, our software supply chain security and threat intelligence solutions have become essential to advancing cybersecurity maturity around the globe. We're on a journey to expand adoption and accelerate growth by hiring top talent across the security industry.Notable breaches such as SolarWinds, CircleCI, and 3CX have elevated software supply...
-
Application Security Architect
4 weeks ago
ireland ReversingLabs Full timeAt ReversingLabs, our software supply chain security and threat intelligence solutions have become essential to advancing cybersecurity maturity around the globe. We're on a journey to expand adoption and accelerate growth by hiring top talent across the security industry.Notable breaches such as SolarWinds, CircleCI, and 3CX have elevated software supply...
-
Security Engineer, AWS Security
3 weeks ago
ireland Amazon Full timeCome and build innovative services that protect our cloud from advanced security threats!As a Security Engineer on our team, you'll help build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon's infrastructure, including advanced persistent threats. You'll work with data scientists, software development...
-
Commissioning Engineer
2 days ago
Ireland Securitas Security Service Full timeSecuritas Technology Ireland are currently recruiting for a Commissioning Engineer This position will require travel within Ireland and EMEA. Role Purpose The role of the Commissioning Engineer is to support the project managers to control, deliver and commission high end security systems to the highest industry standards. You will be responsible for...
-
Senior Analyst, Security Compliance
3 weeks ago
ireland Twilio Full timeJoin the team as Twilio’s next Senior Analyst, Security ComplianceWho we areAt Twilio, we’re shaping the future of communications, all from the comfort of our homes. We deliver innovative solutions to hundreds of thousands of businesses and empower millions of developers worldwide to craft personalized customer experiences.Our dedication to remote-first...
-
ireland airbnb, Inc. Full timeSenior Security Engineer, Threat Detection and ResponseAirbnb was born in 2007 when two Hosts welcomed three guests to their San Francisco home, and has since grown to over 4 million Hosts who have welcomed more than 1 billion guest arrivals in almost every country across the globe. Every day, Hosts offer unique stays and experiences that make it possible...
-
Senior Physical Security System Design Engineer
4 weeks ago
ireland Konnectway Full timeSenior Physical Security System Design EngineerJob DescriptionAt KonnectWay, we are seeking a seasoned Senior Physical Security System Design Engineer. This role is critical for designing and conceptualizing advanced physical security measures for large-scale infrastructures, focusing on data centers. If you have a deep passion for security technology...
-
Senior Analyst, Security Compliance @ Twilio
3 weeks ago
ireland Cyber Crime Full timeTwilioConnect with customers on their preferred channels—anywhere in the world. Quickly integrate powerful communication APIs to start building solutions for SMS and WhatsApp messaging, voice, and email.Join the team as Twilio’s next Senior Analyst, Security Compliance.Who we areAt Twilio, we’re shaping the future of communications, all from the...
