Join Air Apps: Secure the Future of AI-Powered Planning
At Air Apps, we're not just building software; we're crafting the world's first AI-powered Personal & Entrepreneurial Resource Planner (PRP), poised to redefine how people plan, work, and live. Founded in Lisbon in 2018, and now with a dual presence in Lisbon and San Francisco, our journey has been fueled by a commitment to innovation and a relentless pursuit of excellence. We've achieved over 100 million downloads worldwide while proudly remaining self-funded.
We believe in thinking bigger and moving faster, challenging the status quo daily to push the boundaries of AI-driven solutions. Here, your creativity and technical prowess will directly shape products that empower millions globally. If you're ready to be a pivotal force in securing groundbreaking technology and making a tangible impact, we invite you to join our mission in Lisbon.
Your Mission: Security Enginee
As a **Security Engineer** at Air Apps, you will be at the forefront of protecting our innovative applications, critical infrastructure, and sensitive data from the evolving landscape of cyber threats. This isn't just a role; it's a mission to embed security at the core of our AI-powered future.
You'll be a key partner to our development, DevOps, and IT teams, championing and implementing **secure coding practices, sophisticated vulnerability scanning, and proactive threat modeling**. Your expertise will be instrumental in building and maintaining a robust **Secure Development Lifecycle (SDLC)**, crafting advanced **security monitoring frameworks**, and executing agile **risk mitigation strategies** to ensure our systems remain impregnable.
This is a **fully onsite position** in our vibrant Lisbon office, designed for close collaboration and impactful contributions within a dynamic, fast-paced environment. **We offer comprehensive support for relocation**, welcoming top talent from around the globe to join our family.
What You'll Be Doing: **Architect & Implement:** Develop and lead the implementation of sophisticated **threat modeling** across our applications and infrastructure to proactively identify and mitigate security risks. What You'll Bring: **Experience:** Approximately **4+ years** of dedicated experience in **cybersecurity, application security, or security engineering**. Beyond the Code: Our Commitment to Your Well-being **Cutting-Edge Gear:** Equip yourself with a full **Apple hardware ecosystem** for optimal performance. Diversity & Inclusion: Our Foundation A Note on Authenticity: Your Work, Your Voice
**Hunt & Fortify:** Conduct rigorous **vulnerability scanning, penetration testing, and comprehensive security assessments** to uncover and address system weaknesses.
**Empower Developers:** Collaborate closely with development teams to define, enforce, and evangelize **secure coding practices** and principles.
**Integrate Security:** Partner with DevOps to seamlessly integrate **security into CI/CD pipelines**, automating security testing and controls.
**Defend & Respond:** Monitor and expertly respond to **security incidents**, performing in-depth root cause analysis and implementing preventative measures.
**Ensure Compliance:** Drive adherence to critical **security standards and regulations** including ISO 27001, GDPR, and SOC 2.
**Safeguard Access:** Design and implement robust **Identity and Access Management (IAM) policies, encryption standards, and advanced authentication mechanisms**.
**Review & Secure:** Collaborate with product teams to conduct thorough **security reviews of new features, APIs, and third-party integrations**.
**Document & Educate:** Develop comprehensive **incident response plans, security documentation, and best practices** to foster a security-first culture.
**Innovate & Anticipate:** Continuously research and stay ahead of emerging threats, vulnerabilities, and cutting-edge security technologies.
**Foundational Knowledge:** Strong command of **secure coding principles, OWASP Top 10, and advanced threat modeling techniques**.
**Tooling Expertise:** Hands-on experience with leading **vulnerability scanning tools** (e.g., Nessus, Qualys, Burp Suite) and practical **penetration testing methodologies**.
**Monitoring Prowess:** Proven experience with **SIEM, intrusion detection systems (IDS), and diverse security monitoring tools**.
**Automation Skills:** Proficiency in **scripting and automation** (e.g., Python, Bash, PowerShell) for enhancing security tasks.
**Cloud Security:** Familiarity with **cloud security principles** in AWS, Azure, or GCP, including robust IAM and workload protection strategies.
**Network & API Security:** In-depth knowledge of **encryption protocols, network security fundamentals, and API security best practices**.
**DevSecOps Champion:** Experience working within a **DevSecOps** environment, integrating security seamlessly into CI/CD pipelines.
**Analytical Mindset:** Exceptional ability to analyze **security logs, detect anomalies, and effectively mitigate potential threats**.
**Communication:** Excellent problem-solving skills and the ability to clearly articulate complex security concepts to both technical and non-technical stakeholders.
**Performance Rewards:** Enjoy an **Annual Bonus** recognizing your contributions.
**Peace of Mind:** Benefit from **Top-tier Health and Life Insurance**.
**Seamless Commute:** Receive a generous **Transportation Budget**.
**Flexible Perks:** Access the **Coverflex benefits package** for meal allowances, well-being, and more.
**Family Support:** Comprehensive **Childcare support**.
**Global Connection:** Opportunity to attend **Air Conference** – meet the team, collaborate, and grow together.
**Future Planning:** Secure your financial future with our **Pension Fund**.
**Stay Active:** Complimentary **Urban Sports Club membership**.
**Delicious Meals:** Enjoy **100% free meals** at our office hub.
At Air Apps, we thrive on diversity. We are profoundly committed to fostering a diverse, inclusive, and equitable workplace. We enthusiastically welcome applicants from all backgrounds, experiences, and perspectives, believing that varied voices and experiences are the bedrock of innovation and make us stronger as a collective.
At Air Apps, we value transparency and integrity above all in our hiring process. We require applicants to submit their own original work. Any use of AI-generated assistance in application materials, assessments, or interviews will result in disqualification. We seek your authentic talent and unique perspective.