Your mission

We are looking for an Application Security Engineer with a strong passion for problem solving and attention to detail to join our team in Malaga.

What you'll do:

• Research, learn and work with the newest tools!
• Work as part of the Fortris Security Team with a focus on application level security
• Implement a software assurance model designed to address security defects early in the delivery pipeline
• Perform security architecture design reviews for new features and product releases
• Perform code reviews and advise developers on remediation techniques
• Be an advocate for secure coding practices across all engineering teams
• Facilitate internal training on various security topics to raise awareness and interest
• Manage  external-  and  perform  your  own-  penetration  tests,  and  lead  remediation projects to enhance existing security features
• Improving  the  Secure  Software  Development  Lifecycle,  working  with  and  keeping development teams up to date with secure coding practices
• Create documentation and presentations for security champions on the development team

What you bring:

• BS or MS degree in Computer Science or a related technical field
• At least 5 years in Cybersecurity and Application development
• Advanced level of English
• Bachelor/Master’s Degree in Computer Science or an equivalent degree
• Experience  in  Security  Engineering,  Threat  Modelling,  Penetration  Testing  and Security Code Review
• Deep  knowledge  of  common  web  application  vulnerabilities  (e.g.  Injection  Attacks, XSS, CSRF, etc.) and their mitigation strategies
• Experience in OWASP ASVS Implementation and verification
• Experience in developing web applications and Java programming
• Deep knowledge of standards and methodologies OWASP, PTES
• Experience with security assessment tools like Burp Suite, OWASP ZAP, etc.
• Experience with secure coding practices and automating security checks in pipelines
• Hands-on experience implementing and tuning SAST/DAST
• You have the ability to exploit security flaws on web applications and APIs manually

What we offer:

• Work from home or from our office in the centre of Málaga
• Challenging and exciting projects at an innovative international company that uses cutting-edge tech and Apple equipment
• Collaborative teams and agile multicultural environment
• Competitive salary with flexible compensation plan
• Flexible working hours
• 25 paid vacation days + public holidays
• Private health insurance
• Relocation Package for you and your family, including soft-landing service to help you settle in
• Free English/Spanish lessons
• Free parking provided if needed
• Amazing office in Málaga city centre
• Team building events, learning labs and corporate events
• Ongoing learning and professional development opportunities
• Office perks including games console, football table, books; fully stocked kitchen with unlimited coffee, organic fruit, ice-cream, etc
• Great Place to Work certified - Málaga Best Workplaces

About us

We integrate digital assets into enterprise and institutional treasury operations. 

From payroll to cross-border transactions, Fortris was built from the ground up to slot right into your existing financial tooling.

Founded in 2017 by a team of payment and security veterans, we’ve designed a platform that links directly into a company’s infrastructure, making the adoption of digital assets simple.

As the world changes, we are ready to help your organization transition to the next step in financial technology.