DevSecOps Application Security Lead

Description

Job Summary: PROHIRING is seeking a DevSecOps Application Security Lead to implement and continuously improve security controls throughout the software development lifecycle. Key Highlights: 1. Lead application security with a DevSecOps focus. 2. Implement modern security tools and practices. 3. Collaborate with development teams to strengthen security. **PROHIRING is seeking a DevSecOps Application Security Lead in Monterrey, Nuevo León** ----------------------------------------------------------------------------------------- ### **Application Security Lead (DevSecOps)** Remote (based in Monterrey) \| $48,000 MXN monthly At **PROHIRING**, we are looking for an application security specialist to join a technology team focused on modern DevSecOps practices. This role focuses on implementing and continuously improving security controls across the software development lifecycle. ### **Key Responsibilities** * Implement and manage code analysis tools (e.g., SonarQube) in CI/CD pipelines * Integrate container and dependency vulnerability scanning (e.g., Trivy or similar tools) * Conduct application security assessments (e.g., OWASP Top 10, SAST/DAST) * Define and enforce secure coding best practices * Manage and track identified vulnerabilities * Collaborate with development teams to strengthen security controls * Validate security configurations in cloud environments (AWS) ### **Requirements** * 3+ years of experience in application security or cybersecurity * Experience with OWASP Top 10 and vulnerability analysis * Knowledge of integrating security into CI/CD (DevSecOps) * Experience with tools such as SonarQube, Trivy, or similar * Knowledge of cloud security (AWS) * Experience with the Secure Software Development Lifecycle (SSDLC) ### **Conditions** * Work mode: 100% remote * Base location: Monterrey (open to candidates from other regions) * Schedule: Monday to Friday, 8:00 AM to 6:00 PM * Salary: **$48,000 MXN monthly** * Permanent employment contract ### **What We Are Looking For** A hands-on, technical professional focused on execution and continuous improvement, capable of collaborating with development teams to effectively integrate security into the software lifecycle. Interested candidates are encouraged to apply through this platform, attaching their updated CV. **Desired education level:** Bachelor's degree — completed **Desired experience level:** Mid-level **Departmental function:** Technology / Internet **Industry:** Retail **Skills:** * DevSecOps * CI/CD * OWASP *This vacancy originates from the Talenteca.com job board:* *https://www.talenteca.com/anuncio?j\_id\=69e7bd025300003b00e7a07a\&source\=indeed*