ROMA was here!!!

Application Security Engineer

Location:

Published
Deadline
11 December
10 January
Greetings from aPeople. This road will lead you to a world of new opportunities.

We’ll try to provide all the information you need down below. We hope the journey you are about to begin will be full of pleasant surprises.

We would really like to have you on our team, so read the description and jump all in!

About us

We are aPeople, representing adjarabet.com - the biggest entertainment portal in the region and a member of an international group - Flutter Entertainment. 

We share the values of Amigoness - We communicate easily and trust each other, are friendly and empathic; Up - We are always ready for development. We are not afraid of new challenges and adapt quickly in crisis situations; and Fairplay - We believe that all people are equal and treat everyone fairly.

We can provide you with a sustainable environment, a skillful team, and a work full of new experiences. Surf over our LinkedIn or Facebook page to learn about our corporate viewpoints and here's our vacancy page for more job openings.

About the vacancy:
We need you to:
  • Own the configuration, monitoring and continuous tuning of Anti-DDoS and WAF policies on our CDN platforms;
  • Analyze traffic patterns and threat intelligence to identify and mitigate attack vectors;
  • Respond to web application attacks in coordination with the incident response team;
  • Participate in post-incident reviews and provide recommendations to harden defenses;
  • Automate and scale testing using SAST, DAST, and SCA tools integrated into CI/CD pipelines.
  • Ensure secure configuration baselines for EC2, EKS, Lambda, API Gateway, and serverless workloads.
  • Basic knowledge of performing threat modelling (STRIDE) and integrate findings into the SDLC.
  • Design and perform secure code and architecture reviews, integrating OWASP Top 10 standards into development workflows.
  • Develop infrastructure-as-code security guardrails using Terraform.
    • We need you to have:
  • 3+ years in a security engineering or infrastructure security role;
  • Hands-on experience with WAF and Anti-DDoS on at least one major CDN (e.g., Cloudflare, Akamai);
  • Strong understanding of TCP/IP, HTTP/S, DNS, and TLS;
  • Familiarity with OWASP Top 10, API Security Top 10, common web attack vectors, and automated attack tools;
  • Scripting skills (e.g., Python, Bash) for automation and log analysis;
  • Experience securing CI/CD pipelines and DevOps workflows;
  • Practical knowledge of Docker, Kubernetes/EKS, and container security (runtime and image scanning).
    • We promise to give you:
    ·        Health insurance
    ·        Competitive salary
    ·        Performance-based bonus system
    ·        Professional development opportunities
    ·        Dress the way you want
    ·        Hybrid working model
    ·        Access to apeople's own digital currency - aPeso
    ·        Thematic internal clubs
    ·        Out of the box community
    ·        Gamification spirit
    ·        Welcoming team
    ·        Skill sharing
    ·        Your personal amigo to help you adapt

    Ready to jump in? Let us know by uploading your resume down below.
     
    May your journey begin!
     
    aPeople team 

    Apply for job

    Upload your file

    Other Vacancies