Security Engineer

About Air Apps

At Air Apps, we’re a family‑founded company on a mission to create the world’s first AI‑powered Personal & Entrepreneurial Resource Planner (PRP). Founded in 2018 in Lisbon, Portugal, and also operating in San Francisco, we are self‑funded and have reached more than 100 million downloads worldwide.

The Role

As a Security Engineer you will safeguard our applications, infrastructure, and data from threats and vulnerabilities. You will collaborate closely with development, DevOps, and IT teams to implement secure coding practices, vulnerability scanning, and threat modeling.

Key responsibilities include building and maintaining a secure development lifecycle (SDLC), security monitoring frameworks, and proactive risk mitigation strategies.

Position is fully onsite and located in Lisbon. Relocation support is available.

Responsibilities

• Develop and implement threat modeling to identify security risks across applications and infrastructure.
• Conduct vulnerability scanning, penetration testing, and security assessments to detect weaknesses.
• Define and enforce secure coding practices in collaboration with development teams.
• Integrate security into CI/CD pipelines and automate security testing.
• Monitor and respond to security incidents, conduct root‑cause analysis, and implement preventative measures.
• Ensure compliance with security standards and regulations (e.g., ISO 27001, GDPR, SOC 2).
• Design and implement Identity and Access Management (IAM) policies, encryption standards, and authentication mechanisms.
• Collaborate with product teams to conduct security reviews of features, APIs, and third‑party integrations.
• Develop incident response plans, security documentation, and best practices.
• Stay ahead of emerging threats, vulnerabilities, and security technologies.

Requirements

• 4+ years of experience in cybersecurity, application security, or security engineering.
• Strong knowledge of secure coding principles, OWASP Top 10, and threat modeling techniques.
• Experience with vulnerability scanning tools (Nessus, Qualys, Burp Suite) and penetration testing methodologies.
• Hands‑on experience with SIEM, intrusion detection systems, and security monitoring tools.
• Proficiency in scripting and automation (Python, Bash, PowerShell).
• Familiarity with cloud security in AWS, Azure, or GCP, including IAM and workload protection.
• Knowledge of encryption protocols, network security, and API security best practices.
• Experience working with DevSecOps, integrating security into CI/CD pipelines.
• Ability to analyze security logs, detect anomalies, and mitigate potential threats.
• Excellent problem‑solving skills and ability to communicate security concepts to non‑technical stakeholders.

Benefits

• Apple hardware ecosystem for work.
• Annual bonus.
• Top‑tier health and life insurance.
• Transportation budget for commute needs.
• Coverflex benefits package for meal allowances, well‑being, and more.
• Childcare support.
• Air Conference – an opportunity to meet the team, collaborate, and grow.
• Pension fund.
• Urban Sports Club membership.
• Meals 100 % free at the hub.

Diversity & Inclusion

At Air Apps, we are committed to fostering a diverse, inclusive, and equitable workplace. We enthusiastically welcome applicants from all backgrounds, experiences, and perspectives.

Compensation

€61 K – €76 K per year.