- Secure-by-Design Enablement: You work closely with software engineering teams to integrate application security into design, development, and deployment processes
- Security Reviews: You perform and manage security reviews for major features, services, APIs, and critical applications
- Tooling & Automation: You design, introduce, and continuously improve application security tooling such as SAST and DAST, including CI/CD integration
- Vulnerability Management: You identify, validate, and help prioritize vulnerabilities across applications, APIs, and cloud-native environments, supporting teams with pragmatic remediation guidance
- Advisory & Consulting Role: You act as a trusted security advisor, translating security requirements and findings into practical, developer-friendly solutions
- Cloud & Platform Security: You collaborate with SRE, DevOps, and platform teams to improve security in containerized and cloud-native setups (e.g. Kubernetes, Docker, GCP/AWS)
- Security Awareness: You contribute to improving security awareness and knowledge across engineering teams through documentation, guidance, and hands-on support
- Continuous Improvement: You stay up to date with emerging threats, application security trends, and DevSecOps best practices
- Compliance & Certification Leadership: You lead technical readiness and evidence collection for security certifications (e.g., SOC 2, ISO 27001) and emerging regulatory requirements, ensuring the product ecosystem meets global security Standards
- Trust & Sales Enablement: You serve as the technical authority for security questionnaires, providing accurate and timely responses to prospects and clients to streamline the sales process and demonstrate compliance with customer security requirements
Application Security Engineer (m/f/d)
Germany, Munich, Germany, Berlin
Full-time
Permanent employee
Your daily workout
Are you excited to shape application security in a modern, cloud-native product environment? Do you enjoy working closely with software engineers and enabling teams to build secure products by design? Then apply now as an Application Security Engineer (m/f/d) for our team in Berlin or Munich!
Your fitness level
- Professional Experience: You have several years of experience in Application Security, Software Security Engineering, or a closely related role
- Application Security Know-how: You have strong knowledge of OWASP Top 10, secure coding principles, threat modeling, and security testing approaches such as SAST and DAST
- Technical Skills: You are comfortable working with modern software stacks and can read or write code (e.g. Go, Java, Python, or similar) to support reviews, PoCs, or tooling
- Cloud & DevSecOps Understanding: You are familiar with cloud-native architectures, APIs, CI/CD pipelines, and containerized environments
- Mindset: You enjoy working with engineers rather than acting as a gatekeeper
- Working Style: You work in a structured, pragmatic, and collaborative way and feel comfortable shaping processes in a greenfield environment
- Language Skills: You have professional proficiency in English
Your training goal for your first 6 months
- Understanding: You gain a deep understanding of our tech stack, development processes, and teams
- Planning: You create and align a plan to continuously improve the application security posture across the organization
- Execution: You collaborate with engineering teams on concrete AppSec initiatives such as security tooling rollout and process improvements
- Impact: You drive and deliver individual application security projects derived from the aligned plan
The equipment we provide
- Modern Tech Stack & AI Evolution: We don't just maintain; we evolve. Explore our Tech Radar to see our stack, and join us in building an AI-agentic, iterative, and incremental product culture where AI is a core accelerator of our development lifecycle
- Learning Time: Use 10% of your time on learning topics of your choice (conferences, hackathons, internal and external events, videos, books or innovation projects)
- International Team: Join our diverse and international team to collaborate with talented professionals from around the world
- Work-Life-Balance: Benefit from flexible working hours, home office possibilities and 30 days of vacation per year
- Fit & Healthy: Train for free with EGYM Wellpass in several thousand sports and health facilities across Germany and/or alternatively use our in-house gym with EGYM products
- Flex Budget: Use €60 per month flexibly for public transportation and a meal subsidy
- Mentoring Program: Exchange knowledge and grow together across teams and locations through our self-organized mentoring platform
- Discounts: Get a variety of great discounted offers, from fashion to leisure, through our employee benefits portal
- Bike Leasing: Stay active and use our leasing bike offer for your way to work or in your spare time
Contact Information
Upload your documents (CV, salary expectations and earliest possible start date) and specify the job ID #1860.
Contact: Sven Bunkus
For further information: https://career.egym.com
#LI-DNI
About us
Warning regarding phishing emails: Please be aware that all official EGYM recruitment communication is sent exclusively from jobs@egym.com. If you receive a suspicious message from any other domain, please ignore it and do not share personal information if in doubt.
EGYM is a global fitness technology leader, providing fitness and health facilities with intelligent workout solutions. EGYM makes exercising smarter and more efficient with its comprehensive suite of connected gym equipment and digital products that integrate seamlessly with 3rd-party-hard- and software. The result is a fully connected training experience that drives measurable business and health outcomes on and off the training floor.
EGYM also offers subscription-based corporate fitness- and wellness solutions built on a combination of gym-access and EGYM fitness programs that directly target costly chronic conditions and boost employee health, leading to higher productivity and well-being.
EGYM's global headquarters are in Munich, Germany, with North American offices in Denver, Colorado.
EGYM is an equal opportunity employer. All aspects of employment including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs, regardless of race, gender, religion, sexual orientation, age or any other aspect of an individual's identity.
EGYM is a global fitness technology leader, providing fitness and health facilities with intelligent workout solutions. EGYM makes exercising smarter and more efficient with its comprehensive suite of connected gym equipment and digital products that integrate seamlessly with 3rd-party-hard- and software. The result is a fully connected training experience that drives measurable business and health outcomes on and off the training floor.
EGYM also offers subscription-based corporate fitness- and wellness solutions built on a combination of gym-access and EGYM fitness programs that directly target costly chronic conditions and boost employee health, leading to higher productivity and well-being.
EGYM's global headquarters are in Munich, Germany, with North American offices in Denver, Colorado.
EGYM is an equal opportunity employer. All aspects of employment including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs, regardless of race, gender, religion, sexual orientation, age or any other aspect of an individual's identity.