Back to Jobs
Madrid, Community of Madrid, Spain Remote (Global)

CloudLinux is hiring a Lead Application Security Engineer / DevSecOps Engineer (worldwide remote)

About the Role

CloudLinux is hiring a Lead Application Security Engineer / DevSecOps Engineer to improve the security of our software products and drive best practices across the entire development lifecycle. This is a worldwide remote role.

What You'll Do

  • Perform security reviews of the company's external services.
  • Design and implement recommendations for security hardening.
  • Participate in all steps of the SDLC as a security engineer.
  • Design and review new features to implement the Security by Design principle.
  • Call attention to risks and drive actions to address those risks to protect users.

What We're Looking For

  • Good technical knowledge and deep understanding of security, including web applications security (backend and frontend), penetration testing, and modern security mechanisms.
  • At least 3 years of experience assessing the security of Web applications and Binary applications.
  • Deep understanding of modern web technologies (OAuth, JWT, CORS, CSP, SOP, SameSite) and architectures.
  • Relevant education or a good understanding of information security and information technologies basics.
  • Experience coding/scripting in one or more general-purpose languages.
  • Deep understanding of Linux architecture and security stack.
  • Experience in binary vulnerabilities and exploitation.
  • At least an upper-intermediate level of English proficiency.

Nice to Have

  • Experience in exploiting vulnerabilities found in the code.
  • Experience with code audits and code audit automation.
  • Experience in architecting, developing, or maintaining secure cloud solutions.
  • Experience in review of Docker/Kubernetes architectures.
  • Successful CTF or Bug Bounty participation will be a major plus.
  • Relevant certificates (OSCP, AWAE, CREST, GPEN) will be a major plus.

Technical Stack

  • Linux
  • OAuth, JWT, CORS, CSP, SOP, SameSite
  • Docker, Kubernetes

Benefits & Compensation

  • A focus on professional development.
  • Interesting and challenging projects.
  • Fully remote work with flexible working hours, allowing you to schedule your day and work from any location worldwide.
  • Paid 24 days of vacation per year, 10 days of national holidays, and unlimited sick leaves.
  • Compensation for private medical insurance.
  • Co-working and gym/sports reimbursement.
  • Budget for education.
  • The opportunity to receive a reward for the most innovative idea that the company can patent.

Work Mode

This is a fully remote position open to candidates located worldwide.

CloudLinux is an equal opportunity employer.

Required Skills
LinuxOAuthJWTCORSCSPSOPSameSiteDockerKubernetesApplication SecurityDevSecOpsSecurity ArchitectureThreat ModelingSecure Coding
Starting a business in Thailand?

Company registration done right

Foreign ownership rules, licenses, tax registration — Thai business setup has many moving parts. SVBL guides you through every step with full legal compliance.

Company registration & structure
Foreign ownership solutions
License & tax registration
BOI promotion eligibility
Start your business
100% foreign ownership possible
About company
CloudLinux
TuxCare is a subsidiary of CloudLinux Inc., the maker of the #1 OS in security and stability for hosting providers. It offers a portfolio of security solutions for Linux and open-source software aimed at enterprise organizations.
All jobs at CloudLinux Visit website
Job Details
Category security
Posted 4 months ago

Similar Jobs

Other opportunities you might be interested in

Asana

Principal Security Engineer

Asana

San Francisco Hybrid
Devoteam

Cyber Engineer

Devoteam

Lisbon Remote (Country)
Datum

Senior Engineer - Auth

Datum

United States Remote (Global)
Kiefer

Senior Security Engineer

Kiefer

Athens Hybrid
Smart Working Solutions

Senior Security Engineer, India (Remote, Full-Time) [AS219]

Smart Working Solutions

Ahmedabad Remote (Country)
Armis

Technical Support Engineer

Armis

Costa Rica Remote (Global)

Related Articles

Insights related to this role

Remote data scientist working with Kubernetes through a low-code platform, enabling cloud-native tools without backend expertise
Remote Work

Platform Engineering: Kubernetes for All

3 min a month ago
A remote developer working in a well-lit, modern workspace, illustrating a productive environment enabled by a developer experience platform.
Remote Work

Developer Experience Platform: Lessons from Europe

5 min 16 days ago
Home office setup with dual monitors showing Kubernetes dashboards, representing the rise of Kubernetes remote jobs in AI and cloud-native careers 2026.
Job Search

Kubernetes Remote Jobs: AI & Cloud-Native Careers in 2026

5 min a month ago