Back to Jobs
Madrid, Community of Madrid, Spain Remote (Global)

CloudLinux is hiring a Lead Application Security Engineer / DevSecOps Engineer (worldwide remote)

About the Role

CloudLinux is hiring a Lead Application Security Engineer / DevSecOps Engineer to improve the security of our software products and drive best practices across the entire development lifecycle. This is a worldwide remote role.

What You'll Do

  • Perform security reviews of the company's external services.
  • Design and implement recommendations for security hardening.
  • Participate in all steps of the SDLC as a security engineer.
  • Design and review new features to implement the Security by Design principle.
  • Call attention to risks and drive actions to address those risks to protect users.

What We're Looking For

  • Good technical knowledge and deep understanding of security, including web applications security (backend and frontend), penetration testing, and modern security mechanisms.
  • At least 3 years of experience assessing the security of Web applications and Binary applications.
  • Deep understanding of modern web technologies (OAuth, JWT, CORS, CSP, SOP, SameSite) and architectures.
  • Relevant education or a good understanding of information security and information technologies basics.
  • Experience coding/scripting in one or more general-purpose languages.
  • Deep understanding of Linux architecture and security stack.
  • Experience in binary vulnerabilities and exploitation.
  • At least an upper-intermediate level of English proficiency.

Nice to Have

  • Experience in exploiting vulnerabilities found in the code.
  • Experience with code audits and code audit automation.
  • Experience in architecting, developing, or maintaining secure cloud solutions.
  • Experience in review of Docker/Kubernetes architectures.
  • Successful CTF or Bug Bounty participation will be a major plus.
  • Relevant certificates (OSCP, AWAE, CREST, GPEN) will be a major plus.

Technical Stack

  • Linux
  • OAuth, JWT, CORS, CSP, SOP, SameSite
  • Docker, Kubernetes

Benefits & Compensation

  • A focus on professional development.
  • Interesting and challenging projects.
  • Fully remote work with flexible working hours, allowing you to schedule your day and work from any location worldwide.
  • Paid 24 days of vacation per year, 10 days of national holidays, and unlimited sick leaves.
  • Compensation for private medical insurance.
  • Co-working and gym/sports reimbursement.
  • Budget for education.
  • The opportunity to receive a reward for the most innovative idea that the company can patent.

Work Mode

This is a fully remote position open to candidates located worldwide.

CloudLinux is an equal opportunity employer.

Required Skills
LinuxOAuthJWTCORSCSPSOPSameSiteDockerKubernetesApplication SecurityDevSecOpsSecurity ArchitectureThreat ModelingSecure Coding
Freelancing without stability?

Get steady projects, keep your freedom

Iglu connects you with international clients and handles contracts, payments, and admin. You get consistent work and flexibility — no more chasing invoices or worrying about gaps.

Consistent client projects
Contract & payment management
Flexible work schedule
Revenue-sharing compensation
See open positions
Work from anywhere
About company
CloudLinux
TuxCare is a subsidiary of CloudLinux Inc., the maker of the #1 OS in security and stability for hosting providers. It offers a portfolio of security solutions for Linux and open-source software aimed at enterprise organizations.
All jobs at CloudLinux Visit website
Job Details
Category security
Posted 4 months ago

Similar Jobs

Other opportunities you might be interested in

Asana

Principal Security Engineer

Asana

San Francisco Hybrid
Devoteam

Cyber Engineer

Devoteam

Lisbon Remote (Country)
Datum

Senior Engineer - Auth

Datum

United States Remote (Global)
Kiefer

Senior Security Engineer

Kiefer

Athens Hybrid
Smart Working Solutions

Senior Security Engineer, India (Remote, Full-Time) [AS219]

Smart Working Solutions

Ahmedabad Remote (Country)
Armis

Technical Support Engineer

Armis

Costa Rica Remote (Global)

Related Articles

Insights related to this role

Remote data scientist working with Kubernetes through a low-code platform, enabling cloud-native tools without backend expertise
Remote Work

Platform Engineering: Kubernetes for All

3 min a month ago
A remote developer working in a well-lit, modern workspace, illustrating a productive environment enabled by a developer experience platform.
Remote Work

Developer Experience Platform: Lessons from Europe

5 min 16 days ago
Home office setup with dual monitors showing Kubernetes dashboards, representing the rise of Kubernetes remote jobs in AI and cloud-native careers 2026.
Job Search

Kubernetes Remote Jobs: AI & Cloud-Native Careers in 2026

5 min a month ago