Application Security Engineer (AppSec) – Dubai – 4 to 7 Years Experience
Job Description
Latinum HR Solutions is hiring on behalf of a digital-first enterprise that builds and scales customer-facing web and mobile platforms.
We are seeking an experienced Application Security Engineer (AppSec) who can secure applications without slowing down engineering velocity. The ideal candidate will embed security practices directly into the software development lifecycle (SDLC) and collaborate closely with development teams to build secure, resilient applications from design to deployment.
Responsibilities:
- Perform application security testing, including SAST, DAST, and API security assessments
- Integrate AppSec controls into SDLC and CI/CD pipelines
- Conduct threat modeling and secure design reviews
- Collaborate with developers to remediate identified vulnerabilities
- Define and enforce secure coding standards and best practices
- Support penetration testing activities and vulnerability management programs
- Communicate security risks clearly in developer-friendly language
Job Requirements
• 4–7 years of experience in Application Security or Product Security
• Strong understanding of OWASP Top 10 and API security risks
• Hands-on experience with AppSec tools such as Burp Suite, Checkmarx, Veracode, or similar
• Knowledge of cloud-native environments and microservices architectures
• Experience integrating security into CI/CD pipelines
• Strong analytical and communication skills
Preferred Qualifications
• Industry-recognized security certifications (e.g., CEH, OSCP, CSSLP, or equivalent)
• Experience with DevSecOps practices
• Exposure to container security and cloud security controls
• Background in web and mobile application security testing
• To Apply: Send your CV with Subject Line: Application Security Engineer – Dubai
• Only shortlisted candidates will be contacted.
About the Company
The hiring organization is a rapidly growing digital enterprise focused on delivering scalable web and mobile platforms. Security is embedded as a core component of its digital transformation strategy, ensuring secure product development at scale.
