🟠Senior Application Security Engineer🟠

🟠Join us in Luxoft!

🏦Flexible working hours

🩺Private Medical & Dental care & Life Insurance

💰 Paid Referrals

🏋🏽 MyBenefit program (sports card, well-being program etc.)

🌎 Internal Mobility program - possibility of rotation between projects, locations, accounts

🎓 LuxTalent platform (webinars, training, courses)

🟠Project Description

One of the world's largest providers of products and services to the energy industry has a need to develop, support and integrate software system in Oil & Gas domain.

You will be a member of a cross functional team.

Key project stakeholders are open for innovative ideas.

Project is based on SCRUM methodology.

This is a great opportunity to work in an international team, apply and learn modern IT technologies

🟠Responsibilities

Application Security with strong AI/ML security exposure

Threat modeling and risk assessment for AI systems, APIs, and cloud-native applications

Protection against prompt injection, adversarial ML, data poisoning, and model abuse

Secure SDLC and CI/CD integration, including MLOps pipelines

Hands-on experience with SAST, DAST, SCA, container scanning, and security automation

Strong collaboration with development and data science teams

🟠Skills

What is relevant to have

5+ years in Application Security, with at least 1-2 years focused on AI/ML security

Strong secure coding and vulnerability management background (OWASP Top 10)

Experience with cloud platforms (AWS and/or Azure)

Strong programming skills in Python or Java

Familiarity with AI platforms such as Amazon Bedrock, SageMaker, or Spark

Strong communication skills

What is nice to have

Good knowledge of Microsoft Active Directory services

Firewall and security group administration practical experience.

Good understanding of AICPA SOC2 controls and processes.

Thorough knowledge of network security and protocols.

Knowledge of cryptography protocols and hands-on experience in SSL certificates generation.

Penetration testing hands-on experience in Azure and AWS cloud environments and Kubernetes clusters.

Web and desktop applications penetration testing hands-on experience.

🟠Languages

English: B2 Upper-intermediate

🟠Seniority

Senior

🟠Work mode

hybrid in Wroclaw, Warsaw, Gdansk, Krakow or remote