




Job Summary: An Application Security Specialist responsible for identifying, analyzing, and correcting vulnerabilities to enhance application security maturity and collaborate across teams. Key Highlights: 1. Strategic involvement in identifying and correcting code vulnerabilities. 2. Key role in elevating the application security maturity level. 3. Collaboration with multiple teams and projects to promote a security culture. **Application Security Specialist** We are seeking an Application Security Specialist to strategically identify, analyze, and correct code vulnerabilities. This professional will play a key role in elevating the security maturity level of applications, working directly with multiple teams and projects. The position requires strong technical expertise, analytical insight, and the ability to collaborate effectively with various squads and Tech Leads. **Responsibilities**: Identify, analyze, and remediate vulnerabilities in applications (C\# / ASP.NET Core), perform root cause analysis, apply secure development best practices (OWASP), collaborate with Tech Leads and multiple squads, ensure solution integrity and performance, and promote security awareness throughout the development lifecycle. **Mandatory Requirements**: Analyze source code to identify security vulnerabilities and risks. Conduct root cause analysis (RCA) of identified vulnerabilities. Implement fixes aligned with secure development best practices. Ensure fixes do not negatively impact application performance or functionality. Collaborate closely with Tech Leads and development teams across multiple squads. Support and disseminate secure coding practices across teams. Contribute to the continuous improvement of development security standards. Bachelor’s degree in Computer Science, Computer Engineering, Information Systems, or Systems Analysis (or currently pursuing). **Preferred Qualifications**: Solid experience with C\# and ASP.NET Core. Knowledge of secure development practices (e.g., OWASP Top 10, Secure Coding). Practical experience analyzing and remediating code vulnerabilities. Ability to work concurrently across multiple projects and squads. Strong communication skills and ability to engage with diverse stakeholders. Experience with security tools such as Veracode, SAST, and DAST. Familiarity with other programming languages like Python and PHP. Experience with front-end frameworks (Angular or React). Exposure to environments with multiple technology stacks. Experience working in Agile environments (Scrum/Kanban). **Work Model**: Hybrid — 3 days per week on-site in Pinheiros neighborhood, São Paulo, SP


