We're seeking an experienced Application Security Engineer to support our cybersecurity initiatives across the LATAM, Brazil, and Colombia regions. Job Description This role will focus on performing application penetration testing and security assessments for mission-critical products and client applications. The successful candidate will ensure compliance with industry and regional standards, identify vulnerabilities, and provide actionable remediation guidance to development and business teams. Main Responsibilities: - Conduct application penetration tests and security assessments for internal products and external client platforms. - Ensure compliance with key regulatory frameworks including PCI-DSS, GDPR, and LGPD, and provide recommendations to address gaps. - Analyze and classify vulnerabilities by severity and business risk, and collaborate with engineering teams to guide remediation efforts. - Produce detailed assessment reports, dashboards, and executive summaries to communicate findings to leadership. Qualifications: - 3+ years of experience in Application Security, with hands-on penetration testing across web, mobile, API, and thick client platforms. - Demonstrated experience with tools for SAST, DAST, SCA, and manual security testing techniques. - Solid knowledge of OWASP Top 10, CVE/CVSS scoring, and secure SDLC practices. - Proficiency in compliance requirements related to PCI-DSS, GDPR, and LGPD. - One or more security certifications such as CSSLP, CISSP, GPEN, CEH, or similar.