Join Cybrella’s Elite Security Team

Are you an expert in secure software architecture, code review, and cloud security? Cybrella is seeking a Senior Application Security Architect to play a critical role in strengthening our application security posture. You’ll collaborate with development, DevOps, cloud engineering, and risk teams to integrate security best practices into every phase of the software development lifecycle. If you have a deep understanding of secure coding, vulnerability mitigation, and DevSecOps, we want you on our team!

‍

Your Role at Cybrella

As a Senior Application Security Architect, you will be responsible for designing, assessing, and implementing security controls across web, cloud, and API environments. Your expertise in manual secure code reviews, threat modeling, and security architecture will ensure our applications are resilient against the latest threats. You will also guide developers and engineers on secure coding principles, helping them build security into applications from the ground up.

‍

What You’ll Do

• Architect and assess secure application designs across cloud and on-premise environments.
• Conduct manual secure code reviews of web and cloud applications to identify OWASP Top 10 & SANS Top 25 vulnerabilities.
• Develop and leverage custom scripts and tools to enhance security assessments.
• Collaborate with developers to remediate vulnerabilities and integrate secure coding best practices into the SDLC.
• Perform reassessments and validation testing to ensure vulnerabilities are properly mitigated.
• Provide technical guidance on authentication, authorization, and encryption across various web technologies and APIs.
• Work closely with DevOps teams to integrate security into CI/CD pipelines (DevSecOps).
• Implement security frameworks such as OWASP, SANS CWE, NIST, and ISO 27001.
• Guide and mentor junior security engineers on application security best practices.

‍

What We’re Looking For

We need an application security expert who has a deep technical understanding of secure coding principles, cloud security, and DevSecOps. You should be comfortable performing manual code reviews, developing security solutions, and working directly with developers to improve application security.

Must-Have Skills & Experience:

• 4-5 years of experience in application security and secure code review.
• Proficiency in manual secure code reviews for languages such as Java, JavaScript, Angular, Node.js, Python, and Ruby.
• Strong understanding of web stack technologies (HTTP, HTML5, REST, AJAX) and application platforms (.NET, Tomcat, MS SQL).
• Experience in crafting custom proof-of-concept exploits and scripting in Python, Perl, JavaScript, or Shell scripting.
• Deep knowledge of authentication and authorization protocols (SSL/TLS, OAuth, SAML, JWT, etc.).
• Familiarity with DevSecOps practices, development pipeline security, and automation.
• Hands-on experience with cloud security (AWS, Azure, Google Cloud) and container security.
• Strong ability to assess, document, and communicate security risks to technical and non-technical audiences.

Bonus Skills (Nice to Have):

• Experience with threat modeling and architectural risk assessments.
• Security certifications such as CSSLP, GSSP-Java, or CSP.
• Knowledge of reverse engineering and malware analysis.

‍

Why Cybrella?

At Cybrella, you’ll be part of a high-impact team, working on complex security challenges that help businesses stay ahead of cyber threats. We provide a collaborative, fast-paced environment where innovation and security excellence go hand in hand.

If you’re looking to shape the future of application security, apply now and be part of a team that truly makes a difference.

‍