Startup Jobs
Post a Job
Semperis

Application Security Engineer

Tel Aviv-Yafo , Israel
full-time Hybrid

AI overview

Contribute to application security by embedding security practices in the software development lifecycle and managing vulnerabilities across diverse platforms and environments.

At Semperis, our mission is to be a Force for Good. Starting with being a great place to work. We believe that when people feel valued, supported, and empowered, they do their best work. That’s why we focus on creating an employee experience rooted in purpose, growth, and balance. Semperis has been recognized as one of America’s Fastest-Growing Cybersecurity Companies by the Inc. 5000, a DUNS 100 Top Startup to Work For, and a multi-year Inc. Best Workplace awardee.

What we are looking for:

We are looking for an Application Security Engineer to join our Security Engineering team.

What you will be doing:

As an Application Security Engineer at Semperis, you will play a critical role in ensuring our software applications are secure by design and resilient against evolving threats. You will collaborate closely with development, DevOps, and product teams to embed security throughout the SSDLC and drive secure coding practices.

  • Conduct security assessments, penetration tests, and code reviews across web, mobile, and cloud applications.

  • Integrate security tools (SAST, DAST, SCA) into CI/CD pipelines using platforms like Azure DevOps, GitHub Actions.

  • Design and enforce secure coding standards and SSDLC policies.

  • Collaborate with developers to remediate vulnerabilities and provide inline guidance during PR reviews.

  • Lead threat modeling and architecture reviews for new features and services.

  • Manage secrets, access controls, and data confidentiality assurance across applications.

  • Monitor public exposure of cloud resources and enforce Azure policies to prevent misconfigurations.

  • Participate in incident response and forensic analysis for application-related security events.

  • Deliver security awareness training and documentation for engineering teams.

  • Maintain up-to-date knowledge of OWASP Top 10, secure coding techniques, and emerging threats.

What you will bring to the table:

  • 3+ years of experience in application security or related fields.

  • Strong understanding of secure development practices, cryptography, and vulnerability management.

  • Familiarity with tools like CodeQL, GitHub Advanced Security, and container image scanning platforms.

  • Experience with cloud platforms (Azure preferred), microservices, and containerized environments.

  • Knowledge of authentication protocols (OAuth 2.0, OIDC), RBAC, and VPN architecture.

  • Familiarity with SBOM generation and supply chain security practices.

  • Certifications such as OSCP, CSSLP, or GWAPT are a plus.

  • Excellent communication skills and ability to work cross-functionally.

  • Internally motivated, well organized, able to work proficiently both independently and in a team environment.

  • Strong communication skills with both internal team members and external business stakeholders.

  • All-around team player who is self-motivated with a high work ethic.

Bonus Points:

  • Ability to lead security initiatives and influence engineering culture.

  • Experience with implementing enterprise security solutions.

  • Experience with Splunk or Microsoft Sentinel.

  • Knowledge and experience of building Azure Marketplace applications.

  • Data analysis and visualization skills.

  • Experience in leading small-sized engineering teams.

  • Knowledge of PowerShell and other scripting languages.

Why Join Semperis?
You’ll be part of a global team on the front lines of cybersecurity innovation. At Semperis, we celebrate curiosity, integrity, and people who take initiative. If you’re someone who sees the glass as half full, embraces challenges as growth opportunities, and values a healthy balance between work and life—we’d love to meet you.

**Semperis maintains office locations in several cities across the globe. Candidates who reside within 45 miles of one of our offices—or where the job description specifies a required location—will follow our hybrid work model. This includes working onsite three days per week and remotely the remaining days.

Semperis is an equal opportunity employer and will not discriminate against an applicant or employee based on race, color, religion, creed, national origin or ancestry, ethnicity, sex (including gender, pregnancy, sexual orientation, and gender identity), age, physical or mental disability, veteran or military status, genetic information, citizenship, marital status, or any other legally recognized protected basis under federal, state, or local law. The information collected by the Semperis application is solely to determine suitability for employment, verify identity, and maintain employment statistics. 

 

Applicants with disabilities may be entitled to reasonable accommodation under the Americans with Disabilities Act and/or other applicable state or local laws. A reasonable accommodation is a change in the way things are normally done which will ensure an equal employment opportunity without imposing undue hardship on Semperis. Please inform Semperis representative Anna Taylor, Director of Global Recruiting, if you need assistance completing this application or to otherwise participate in the application process.

Semperis
Website LinkedIn
View all jobs
Get hired quicker

Be the first to apply. Receive an email whenever similar jobs are posted.

Ace your job interview

Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.

Application Security Engineer Q&A's
Report this job
Apply for this job