Perform security reviews/threat modelling to steer projects in the right direction early, participate in security code reviews, and perform penetration testing against products prior to shipping. Promote the adoption of secure coding practices and provide comprehensive training to engineering teams. Develop, document, and maintain security and compliance capabilities in support of DevOps processes. Expertise finding and fixing common security vulnerabilities (e.g., OWASP Top 10) Performing technical security assessments on our web applications, native clients, internal services 1- 3 years of demonstrated experience in CyberSecurity, preferred to be in Software/E-commerce companies Hands-on experience in implementing and operating modern SDLC stack tooling (SAST/SCA/DAST/IAST). Programming skills in at least one: Go, Java, Python, NodeJS, etc.