Application Security Engineer (AWS / Full-Stack)

We are seeking a hands‑on Application Security Engineer with strong AWS and full‑stack development experience (Python/Django & React) to secure, build, and enhance our cloud‑native applications. You will play a critical role in embedding security throughout the SDLC, conducting security assessments, and collaborating closely with engineering teams to design secure, scalable APIs and modern web applications.

• Job Type: Contract
• Salary Package: Up to 9,500 (basic) + AWS

• Implement and maintain application security controls across cloud‑native systems running on AWS.
• Conduct secure code reviews, threat modelling, and vulnerability assessments for APIs, backend services, and front‑end applications.
• Develop and maintain secure, high‑quality backend services using Python/Django and RESTful APIs.
• Build responsive, user‑centric front‑end interfaces using React.js.
• Automate security testing and integrate AppSec practices into CI/CD pipelines.
• Collaborate with developers to remediate security issues and ensure adherence to best practices.
• Design and implement IAM policies, encryption strategies, and security monitoring on AWS.
• Support incident response, security investigations, and compliance‑related activities.

• Strong experience in Application Security, including OWASP, vulnerability management, and secure SDLC.
• Proficiency in AWS services (IAM, Lambda, API Gateway, S3, CloudFront, DynamoDB, RDS, ECS/EKS preferred).
• Hands‑on development skills in:
• Python/Django for backend and API development
• React.js for front‑end development
• Experience with CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins).
• Knowledge of API authentication/authorization (JWT, OAuth2, Cognito).
• Familiarity with DevSecOps tools (Snyk, SonarQube, Burp Suite, Trivy, Prisma Cloud, etc.).
• Strong understanding of cloud and application architecture security.

• Experience with microservices and serverless architectures.
• Container security knowledge (Docker, Kubernetes).
• Certifications such as AWS Security Specialty, CISSP, GIAC, or OSCP.

• Opportunity to build secure applications end‑to‑end.
• Collaborative engineering culture with strong innovation focus.
• Continuous learning and certification support.

By submitting your resume, you consent to the collection, use, and disclosure of your personal information per ScienTec’s Privacy Policy (scientecconsulting.com/privacy-policy).

This authorizes us to:

Contact you about potential opportunities.

Delete personal data as it is not required at this application stage.

All applications will be processed with strict confidence. Only shortlisted candidates will be contacted.