This job has expired
This position was posted on February 26, 2026 and is likely no longer accepting applications. We've kept it here for historical reference. Check out the similar jobs below!
Job Overview
Location
Remote job
Job Type
Full-time
Category
Software Engineering
Date Posted
February 26, 2026
Full Job Description
📋 Description
- • As an Application Security Assurance Specialist at LIT IT GmbH, you will be at the forefront of safeguarding our clients' digital assets by embedding robust security practices throughout the entire software development lifecycle (SDLC) and continuous integration/continuous delivery (CI/CD) pipelines. This pivotal role demands a proactive approach to identifying, assessing, and mitigating security risks within complex enterprise systems, ensuring that security is not an afterthought but a foundational element of every solution we deliver.
- • You will be instrumental in defining and enforcing embedded security practices, working closely with development, DevOps, and security teams to ensure adherence to organizational security policies and industry best practices. This involves the strategic integration of cutting-edge security tools, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and automated secret scanning, directly into development environments and CI/CD workflows.
- • Your technical guidance will be crucial in areas such as security configuration management, deployment hardening, and the secure integration of various tooling across all phases of software delivery. This ensures that our applications are built with security in mind from inception through to deployment and ongoing operation.
- • A core responsibility will be conducting in-depth security risk assessments for both high-level and low-level technical designs. You will meticulously evaluate these designs against established security standards and frameworks, including the OWASP Top 10, CIS Benchmarks, and secure coding standards, to identify potential vulnerabilities and non-compliance issues.
- • Furthermore, you will perform comprehensive security testing across diverse application environments. This includes specialized testing for API security, container scanning to identify vulnerabilities in containerized applications, and dynamic runtime assessments to evaluate the security posture of applications in their operational state. A key aspect of this is evaluating the residual risk post-assessment and recommending appropriate mitigation strategies.
- • You will act as a strategic consultant, collaborating closely with stakeholders to assess the current security maturity of existing practices. Based on this assessment, you will recommend actionable improvements that align with compliance requirements, regulatory mandates, and the need to maintain delivery velocity. Your insights will help organizations navigate the complex landscape of security and compliance without hindering their ability to innovate and deliver quickly.
- • Providing expert-level recommendations on the refinement of automation processes is another critical function. This includes identifying opportunities to enhance security automation, developing effective risk mitigation strategies, and advising on the deployment of compensating controls where direct remediation might not be immediately feasible.
- • Staying ahead of the curve, you will evaluate emerging technologies and explore the leverage of AI-driven application security tools to optimize assurance activities, making our security processes more efficient and effective.
- • Collaboration and leadership are paramount. You will partner with development and DevSecOps teams to embed robust security measures directly within their workflows, ensuring seamless alignment with secure coding standards and overarching organizational priorities. This hands-on approach fosters a shared responsibility for security across the organization.
- • You will actively contribute to the training and upskilling of development teams, cultivating a strong culture of security awareness. By empowering stakeholders with knowledge and best practices, you will enable them to proactively implement secure coding techniques and security controls.
- • Leading cross-functional teams to successfully complete security assurance initiatives will be a key aspect of your role, ensuring projects are delivered on time and to the highest security standards.
- • Finally, you will be responsible for generating clear, actionable reports and presentations. These will be tailored to both technical and non-technical audiences, effectively communicating findings, severity assessments, and the progress of remediation efforts. Maintaining clear, auditable documentation is essential for compliance purposes, and you will contribute strategic insights to executive-level reviews, ensuring leadership is well-informed about the organization's security posture.
🎯 Requirements
- • Proven experience working with application security frameworks and tools such as SAST, DAST, SCA, container security, and related technologies.
- • Strong knowledge of software development lifecycle methodologies, including Agile, DevSecOps, CI CD, and traditional models.
- • Deep understanding of security standards and frameworks such as OWASP Top 10, NIST CSF, and CIS Controls.
- • Demonstrated ability to lead security assurance initiatives within complex development environments.
- • Experience performing technical risk assessments and security evaluations across application ecosystems.
- • Strong communication skills with the ability to engage both technical and business stakeholders.
- • Willingness and readiness to travel as required by project or client needs is expected. This may include occasional domestic or international travel, sometimes on short notice.
🏖️ Benefits
- • Competitive gross monthly salary range of 3000 - 4000 EUR.
- • Opportunities for professional growth through compensated certificates, learning lunches, and language lessons.
- • Flexibility to switch projects after one year of service.
- • Regular team-building events twice a year.
- • Access to a vibrant office in Vilnius, Lithuania, featuring themed lunches and a pet-friendly environment.
- • Remote work opportunities.
- • Flexible time off, adaptable to project demands.
- • Engaging seasonal activities with colleagues.
- • Additional health insurance and loyalty days for Lithuanian residents.
- • Referral bonuses for bringing new talent to the company.
- • Recognition and celebration of significant personal life occasions.
Skills & Technologies
Remote
About LIT IT GmbH
LIT IT GmbH is a German company specializing in IT infrastructure and security solutions. They offer a comprehensive range of services, including network design and implementation, cybersecurity consulting, cloud solutions, and managed IT services. Their expertise lies in building robust and secure IT environments tailored to the specific needs of their clients, ensuring business continuity and data protection. LIT IT GmbH serves a diverse clientele across various industries, helping them navigate the complexities of modern technology and mitigate digital risks.
Get more remote jobs like this
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
