Senior Application Security Engineer

Wroclaw, Poland

QAD, Inc.

QAD is a provider of flexible, cloud-based enterprise resource software and services for global manufacturers. Use innovative ERP, MRP, supply chain and lean manufacturing solutions to manage your business.

View company page

Company Description

QAD is building a world-class SaaS company, and we are growing. We are looking for talented individuals who want to join us on our mission to help solve relevant real-world problems in manufacturing and the supply chain.

We are a virtual first company and your primary work experience will be virtual / working from your home.  Occasional travel to a physical office may be required to enhance working relationships, collaboration, design, strategy and alignment. 

Job Description

QAD is seeking a Senior Application Security Engineer. As an Application Security Engineer, you will play a critical role in ensuring the security and integrity of our organization's applications and software systems. You will be responsible for identifying and mitigating security vulnerabilities, conducting risk assessments, and implementing robust security measures to safeguard our applications against potential threats. This role requires a deep understanding of application security best practices, emerging threats, and the ability to work collaboratively with development teams to integrate security seamlessly into the software development lifecycle.

What you’ll do:

  • Conduct comprehensive security assessments and penetration testing of applications to identify vulnerabilities and risks.
  • Collaborate with development teams to review code, offer guidance on secure coding practices, and assist in remediation efforts.
  • Work with software architects to integrate security into application design and recommend security controls.
  • Develop and maintain threat models for applications, aiding in the creation of mitigation strategies.
  • Educate development teams on secure coding practices and stay informed about evolving security threats and best practices.
  • Assist in investigating and responding to application-related security incidents, collaborating with the incident response team.
  • Create and maintain documentation on application security policies, procedures, and guidelines.
  • Generate reports on security assessments and findings.
  • Coordinate with cross-functional teams to integrate security into the software development lifecycle.
  • Collaborate with external security organizations and researchers to stay updated on emerging threats and vulnerabilities.
  • Define secure application architectures for SaaS applications.
  • Develop automated processes for SCA, DAST, and SAST.
  • Integrate security testing tools into CI/CD pipelines for continuous security assessments.


What you'll need:

  • A bachelor's degree in a relevant field such as Computer Science, Information Technology, Cybersecurity, or a related discipline
  • 3-5 years of experience in network security with a strong focus on AWS, GCP, and cloud architectures.
  • Excellent written and verbal communication skills in English.
  • Senior level programming and scripting skills (Java, Python, TypeScript)
  • Proven experience in application security, with a strong understanding of secure coding practices.
  • In-depth knowledge of common application security vulnerabilities (OWASP Top 10) and the ability to remediate them.
  • Experience with tools and techniques for vulnerability assessment, penetration testing, and code review (Veracode, Snyk, SonarQube).
  • Familiarity with security standards, frameworks, and compliance requirements (SAML, OIDC, OAuth, Spring Security).
  • Excellent communication and collaboration skills.
  • Relevant certifications such as CISSP, CSSLP, or CEH are a plus.

Additional Information

  • Your health and well being are important to us at QAD. We provide programs that help you strike a healthy work-life balance.
  • Opportunity to join a growing business, launching into its next phase of expansion and transformation.
  • Collaborative culture of smart and hard-working people who support one another to get the job done.
  • An atmosphere of growth and opportunity, where idea-sharing is always prioritized over level or hierarchy.
  • Compensation packages based on experience and desired skill set


About QAD:

QAD Inc. is a leading provider of adaptive, cloud-based enterprise software and services for global manufacturing companies. Global manufacturers face ever-increasing disruption caused by technology-driven innovation and changing consumer preferences. In order to survive and thrive, manufacturers must be able to innovate and change business models at unprecedented rates of speed. QAD calls these companies Adaptive Manufacturing Enterprises. QAD solutions help customers in the automotive, life sciences, packaging, consumer products, food and beverage, high tech and industrial manufacturing industries rapidly adapt to change and innovate for competitive advantage.

QAD is committed to ensuring that every employee feels they work in an environment that values their contributions, respects their unique perspectives and provides opportunities for growth regardless of background. QAD’s DEI program is driving higher levels of diversity, equity and inclusion so that employees can bring their whole self to work.

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class. 


Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Application security AWS CEH CI/CD CISSP Cloud Compliance Computer Science DAST GCP Incident response Industrial Java Network security OWASP Pentesting Python Risk assessment SaaS SAML SAST Scripting SDLC Security assessment SonarQube Strategy TypeScript Veracode Vulnerabilities

Perks/benefits: Competitive pay Equity Home office stipend Startup environment

Regions: Remote/Anywhere Europe
Country: Poland
Job stats:  14  4  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.