Application Security Engineer (mfd)

Application Security Engineer

Are you excited to shape application security in a modern cloud‑native product environment? Do you enjoy working closely with software engineers and enabling teams to build secure products by design? Apply now as an Application Security Engineer (m/f/d) for our team in Berlin or Munich.

Responsibilities

• ‑by‑Design Enablement – work closely with software engineering teams to integrate application security into design, development and deployment processes.
• Security Reviews – perform and manage security reviews for major features, services, APIs and critical applications.
• Tooling & Automation – design, introduce and continuously improve application security tooling such as SAST and DAST including CI/CD integration.
• Vulnerability Management – identify, validate and prioritize vulnerabilities across applications, APIs and cloud‑native environments and provide pragmatic remediation guidance.
• Advisory & Consulting – act as a trusted security advisor translating security requirements and findings into practical developer‑friendly solutions.
• Cloud & Platform Security – collaborate with SRE, DevOps and platform teams to improve security in containerized and cloud‑native setups (e.g. Kubernetes, Docker, GCP, AWS).
• Security Awareness – contribute to improving security awareness and knowledge across engineering teams through documentation, guidance and hands‑on support.
• Continuous Improvement – stay up to date with emerging threats, application security trends and DevSecOps best practices.

Qualifications

• Professional Experience – several years of experience in Application Security, Software Security Engineering or a closely related role.
• Application Security Know‑how – strong knowledge of OWASP Top 10, secure coding principles, threat modeling and security testing approaches such as SAST and DAST.
• Technical Skills – comfortable working with modern software stacks and able to read or write code (e.g. Go, Java, Python) to support reviews, PoCs or tooling.
• Cloud & DevSecOps Understanding – familiarity with cloud‑native architectures, APIs, CI/CD pipelines and containerized environments.
• Mindset – enjoy working with engineers rather than acting as a gatekeeper.
• Working Style – structured, pragmatic and collaborative; comfortable shaping processes in a greenfield environment.
• Language Skills – professional proficiency in English.

First 6‑Month Goals

• Understanding – gain a deep understanding of our tech stack, development processes and teams.
• Planning – create and align a plan to continuously improve the application security posture across the organization.
• Execution – collaborate with engineering teams on concrete AppSec initiatives such as security tooling rollout and process improvements.
• Impact – drive and deliver individual application security projects derived from the aligned plan.

Benefits & Equipment

• Learning Time – use 10 % of your time on learning topics of your choice (conferences, hackathons, internal/external events, videos, books or innovation projects).
• Modern Tech Stack – engage with other technologies and explore our tech radar.
• Equipment – choose from state‑ofthe‑art laptops (MacOS, Linux, Windows) and your preferred distribution.
• International Team – collaborate with talented professionals from around the world.
• Work‑Life Balance – flexible working hours, home‑office possibilities and 30 days of vacation per year.
• Fit & Healthy – free training with EGYM Wellpass at thousands of sports and health facilities across Germany or use our in‑house gym.
• Flex Budget – 60 € per month for public transportation and a meal subsidy.
• Discounts – access a variety of discounted offers via our employee benefits portal.

Contact

Upload your documents (CV, salary expectations and earliest possible start date) and specify the job ID #1860.

Contact: Sven Bunkus

For further information:

About Us

EGYM is a global fitness technology leader providing fitness and health facilities with intelligent workout solutions. EGYM makes exercising smarter and more efficient with its comprehensive suite of connected gym equipment and digital products that integrate seamlessly with third‑party hardware and software. The result is a fully connected training experience that measurable and health outcomes on and off the training floor.

EGYM also offers subscription‑based corporate fitness and wellness solutions built on a combination of gym‑access and EGYM fitness programs that directly target costly chronic conditions and boost employee health, leading to higher productivity and well‑being.

EGYMs global headquarters are in Munich, Germany, with North American offices in Denver, Colorado.

EGYM is an equal‑opportunity employer. All aspects of employment, including the decision to hire, promote, discipline or discharge, will be based on merit, competence, performance and business needs regardless of race, gender, religion, sexual orientation, age or any other aspect of an individual’s identity.

Key Skills

Laboratory Experience, Vendor Management, Design Controls, C/C++, FDA Regulations, Intellectual Property Law, ISO 13485, Research Experience, SolidWorks, Research & Development, Internet Of Things, Product Development

Employment Type

Full‑Time

Experience

Years

Vacancy

1