Nebius
Application Security Engineer
Remote Application Security role with clear candidate location fit.
PostedJul 4, 2026
Eligible countries41 accepted countries
Seniority signalSenior
Work settingRemote
Accepted candidate locations
Role overview
Application Security Engineer
Requirements and responsibilities
Readable role content extracted into sections for faster review.
Your responsibilities will include:
- Build and maintain ASPM tools and their rules.
- Identify, analyze, and remediate application security vulnerabilities using tools like ASPM.
- Collaborate with development teams to integrate security best practices into the software development lifecycle (SDLC).
- Conduct manual and automated penetration testing of applications.
- Develop and maintain secure coding guidelines for development teams.
- Facilitate threat modeling and risk assessments on new and existing applications.
- Stay updated on the latest security threats, vulnerabilities, and mitigation techniques.
- Serve as an application security subject matter expert to other teams.
We expect you to have:
- 4+ years of experience in application security.
- Strong knowledge of common application security risks (e.g. OWASP Top 10) and how to mitigate them.
- Experience with secure coding practices in languages such as Python, Go, Java, or JavaScript.
- Proficiency in a common programming language (such as Go or Python) with a willingness to learn Go, if necessary.
- Hands-on experience with security testing tools (Burp Suite, ZAP, Semgrep, etc.).
- Understanding of authentication protocols like SAML or OIDC.
- Experience in conducting threat-modeling sessions.
- Strong problem-solving and analytical skills.
- Good written and verbal communication skills in English.
- Willingness to learn new things.
- Being comfortable working independently.
It would be an added bonus if you had:
- Confidence in presenting your ideas and opinions in a manner that can be challenged, while responding well to feedback.
- Experience in designing, building, and maintaining security automation.
- Experience in translating compliance and regulation requirements into technical specifications.
- Experience in exploiting vulnerabilities in web applications, Linux kernels, containers, and networks.
- Security certifications such as OSCP or OSWE.
Benefits & Perks:
- Competitive compensation
- Career growth and learning opportunities
- Flexibility and ownership
- Collaborative and innovative culture
- Opportunity to work on impactful AI projects
- International environment and talented teams
Similar roles
Keep a backup shortlist.
Python 9 accepted countries
Senior Backend Engineer (AdTech)Leap ToolsView role Eas Build, Expo 9 accepted countries
Senior/Lead Mobile EngineerVox MediaView role AWS, DevOps 9 accepted countries
Senior Software EngineerBaltimore BannerView role Api Testing, Aqa 9 accepted countries
Senior Mobile QA EngineerSubway EcommerceView role Stack
Use these tags to compare similar remote roles.
Location eligibility
Candidates should apply only when their profile country is listed here.
Your profileCountry not setSign in to check your country against this role.
View all 41 accepted countries
AlbaniaAustriaBelarusBelgiumBulgariaCanadaCroatiaCyprusCzechiaDenmarkEstoniaFinlandFranceGermanyGreeceHungaryIcelandIrelandItalyLatviaLithuaniaLuxembourgMaltaMexicoMoldovaMontenegroNetherlandsNorth MacedoniaNorwayPolandPortugalRomaniaSerbiaSlovakiaSloveniaSpainSwedenSwitzerlandUkraineUnited KingdomUSA
Hiring flow
WithMira shows the role, then sends candidates to the company application.
1Check role fit, stack, and location eligibility in WithMira.
2Open the company application page from the tracked apply link.
3Save the role or subscribe for similar opportunities before leaving.