Senior Application Security Engineer - Octopus by RTG

Egypt - Remote

Full Time Senior-level / Expert USD 19K - 36K * ^est.

robusta

Robusta Studio is RTG’s digital agency. We build customer engagement tools and apps focused on digital transformations that help businesses grow.

View all jobs at robusta

Apply now Apply later

Posted 1 day ago

Who we are;

Octopus by RTG is enabling a key partner organization to grow their tech teams while focusing on AI. We are currently looking for the right pioneers to join the team!

Octopus is proud to be part of the Robusta Technology Group (RTG), a leading tech group. With a decade of experience and a successful track record of delivering over 300 projects across Europe, the Middle East, and North America, RTG has established itself as a preferred employer in the Egyptian market. Octopus and Robusta are building a bridge between Europe and Africa, creating tailored hub solutions to connect companies with top talent across the globe.

Octopus is specialized in rapidly assembling remote & onsite global tech teams that are fully aligned with the culture and practices of a particular brand. By providing tailored hubs to suit its clients needs, Octopus gives companies all the advantages of remote work and offshoring without all the negatives.

You will be working with an Egypt-based grocery delivery startup, founded in 2017, rapidly grew from a local bakery service to a full-scale platform offering thousands of daily essentials delivered in under an hour. Backed by over $33M in funding, it operates across major Egyptian cities and is expanding regionally with a strong tech-driven supply chain.

Role Objective:

The Senior Application Security Engineer will be responsible for executing and advancing application security efforts through hands-on assessments, process improvements, secure development enablement, and cross-functional collaboration. They will act as a subject matter expert for security design and remediation, contributing to secure software delivery at scale.

Key Roles & Responsibilities:

Contribute to the design and implementation of the organization’s application security program.
Support the enforcement of secure coding practices and industry best standards.
Conduct threat modeling sessions, design reviews, and security walkthroughs with development teams.
Ensure alignment with regulatory frameworks and standards (e.g., OWASP, PCI-DSS, ISO 27001).
Perform static (SAST) and dynamic (DAST) application security testing using tools such as (Checkmarx, SonarQube, Veracode, Burp Suite)
Lead and conduct manual code reviews and penetration testing exercises as needed.
Prioritize, and guide remediation of vulnerabilities based on business risk and impact.
Assess third-party libraries, applications, and APIs for security risks and integration issues.
Embed security into CI/CD pipelines by integrating and optimizing automated security tools.
Provide architectural and design security consultation to product and engineering teams.
Drive awareness and adoption of secure coding practices among developers and DevOps.
Deliver security knowledge-sharing sessions and tailored training to technical teams.
Collaborate with cross-functional stakeholders (product, IT, compliance, engineering).
Support investigation and response to application security incidents.
Conduct root cause analysis and assist with implementing preventative controls.
Coordinate with the SecOps team on logging, detection, and monitoring enhancements.
Help define and report on security KPIs, risks, and remediations to management.
Stay informed on current threat trends, tools, and emerging AppSec methodologies.

Requirements

Required Experience, Education, Knowledge, and Skills

2-5 years of experience in Application Security.
Bachelor's degree and/or master’s degree in cyber security, information security, computer engineering, computer science, or a related field.

Core Knowledge & Skills: