Application Security Engineer

As an Application Security Engineer, your main responsibility will be to work within our team to safeguard the organization's information assets. You will play a key role in conceptualizing, designing, implementing, and maintaining security solutions across our B2B and B2C platforms. A big part of your role will be to integrate security into the software development lifecycle (SDLC), collaborating closely with Developers, DevOps, DevSecOps, and other teams to ensure our applications are built, deployed, and maintained with security at the core.

• Work closely with other security engineers, analysts, and specialists to strengthen security processes and controls across our platforms.
• Plan, design, implement, and monitor security controls for CI/CD pipelines, vulnerability management, applications, APIs, and Kubernetes clusters.
• Automate security testing and integrate it seamlessly into CI/CD pipelines.
• Use Infrastructure as Code (IaC) and custom solutions to provision and automate security tooling in containerized environments.
• Act as a security advocate, guiding development teams and promoting secure coding practices.
• Contribute to system and environment design while fostering a strong security culture within the organization.
• Conduct threat modeling, application security testing, and vulnerability assessments to identify and resolve security weaknesses.
• Participate in incident response activities and help improve resilience.
• Research, evaluate, and recommend new security tools and technologies.
• Create and maintain clear documentation for security implementations and procedures.

• Experience in Application Security Engineering, DevOps, Software Development, or related roles.
• Strong knowledge of SAST/DAST/SCA, API Security, and Threat Modeling.
• Solid understanding of Kubernetes, containerization, and CI/CD pipelines.
• Good grasp of security architecture in microservices environments.
• Advanced understanding of SDLC and security concepts across web apps, containers, systems, networks, and common protocols (TCP, HTTP/S, DNS, reverse proxies, etc.).
• Programming or scripting skills in at least one language (Python, Bash, Golang).
• University degree in IT or related field, or equivalent professional experience.
• Excellent spoken and written English skills.
• Security mindset with strong communication, problem-solving, and analytical skills, plus the ability to work under pressure and take initiative.
• Nice to have:
  • familiarity with frameworks;
  • experience with CNAPP tools, IaC, GitOps, and automation;
  • penetration testing knowledge/experience.

• Enjoy generous vacation time totaling 38 days (28 working days) to maximize your well-deserved time off, along with flexible work hours tailored to your lifestyle.
• Elevate your well-being with monthly sports/health compensation, full sick leave coverage for the first 8 days, our in-house gym, and a chill games room to unwind.
• Unlock a generous Supplemental Training Program that includes training and company-wide knowledge-sharing opportunities to fuel your growth.
• Our office is a cozy (and dog-friendly) haven right in the heart of the city. Enjoy complimentary fruits and beverages and free parking. It's the perfect place to be productive and feel right at home.
• Be part of the most legendary events and make amazing connections with colleagues from across the entire company.
• Comprehensive relocation support for a smooth transition.
• We foster innovation and independence while celebrating success in a multicultural and diverse company, where you'll work alongside people from around the globe.
• ..plus, if you're not already a pro, we'll teach you how to play poker

• Interview -  Home assignment - Second Interview - Police record, and background check - Offer
• Start date: ASAP

We are an equal opportunity employer, and we value diversity. Our diverse backgrounds, experiences, characteristics, and traits make us better at serving customers. So please, come as you are

Tallinn, Estonia

Coolbet is an award-winning gaming company offering sportsbook, casino, and poker experiences in 10 countries across 3 continents. Owned by Sega Sammy Creation, we combine innovative technology with a passion for excellence to deliver top-quality entertainment directly to players, while also providing advanced B2B solutions to operators in the US. With a diverse team of 1100+, including around 300 based at our Tallinn HQ, representing more than 50 nationalities, we're shaping the future of gaming through continuous product development, a collaborative culture, and a strong commitment to responsible play. Find out more about Coolbet