This website uses cookies to ensure you get the best experience.

Devtech and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, that is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor
Skip to main content
Global Services - Engineering · Belgrade Office, Novi Sad Office · Hybrid

Application Security Engineer

About us

Devtech provides digital innovation services that help Fortune 1000 and emerging companies transform, scale and disrupt. We partner with our clients to envision and develop next-gen digital and cloud solutions that drive impactful business outcomes through people and technology.

Our mission is to empower every innovative business in the world to do what they do best, even better.

Founded in 2012, Devtech successfully bootstrapped the business for many years before securing institutional growth capital in 2022 and 2024 to fuel our next stages of growth. We are a team of over 300 professionals across Europe and North America, and our continued growth is a testament to the quality of work our teams produce.

At Devtech, we’re fostering an environment of autonomy, mastery, and purpose, where our team members can grow and thrive. As we continue to scale globally, we're excited to welcome new team members who share our curiosity and growth mindset and are ready to make an impact!

What you’ll do

Cryptography Analysis & Validation

  • Review, annotate, and validate cryptographic findings produced by static code analysis, automated tooling, and LLM/agentic systems.

  • Assess correctness, completeness, severity classification (including quantum‑related severities), and overall quality of cryptographic issues using defined rubrics.

  • Identify weaknesses, misconfigurations, or incorrect assumptions in cryptographic implementations across diverse languages and codebases.

  • Perform manual and statistical evaluation of detection and remediation performance across many repositories.

Remediation Engineering

  • Evaluate AI‑generated remediation outputs and experiment results, ensuring they meet cryptographic and systems‑security quality standards.

  • Suggest improvements to remediation workflows, especially in edge cases and statistical outliers.

  • Write, refine, and maintain Semgrep/OpenGrep rules to detect cryptographic patterns.

  • Improve remediation systems by documenting insights and contributing to iterative AI agent enhancements.

Systems & Migration Support

  • Assist engineering teams (internal and customer) with encryption migration tasks involving databases, filesystems, networks, or multi‑system upgrades.

  • Analyze and support complex data migrations that require coordinated updates across multiple systems.

  • Draft action plans, document risks, and ensure the correct stakeholders are involved for successful cryptographic or system‑level transitions.

Customer-Facing & Cross‑Team Collaboration

  • Meet with customer engineering teams and technical leaders to assess cryptographic posture using Threat Point and related tools.

  • Identify and document gaps in discovery and remediation systems, proposing updates or improvements.

  • Communicate cryptographic reasoning clearly to both technical and non‑technical audiences.

  • Collaborate closely with cryptographers, systems engineers, LLM/AI researchers, product teams, and other specialists.

Code & System Evaluation

  • Analyze complex, multi‑language codebases to understand cryptographic usage patterns, build processes, and test suites.

  • Judge the performance of grouping, detection, and remediation systems using a mix of statistical analysis and manual inspection.

Documentation & Continuous Improvement

  • Document findings, insights, assumptions, and edge cases with high clarity and precision.

  • Contribute to continuous improvement of cryptographic workflows, AI agent reliability, and remediation pipelines.

  • Maintain structured, organized notes that enable reproducibility and help drive iterative improvements.

What you'll need

  • Strong academic and applied knowledge of classical cryptography

  • Background implementing cryptographic mechanisms (symmetric, asymmetric, hashing, KDF, MAC, encryption modes, transport layers)

  • Solid programming experience - able to deeply read, analyze, and critique multi-language codebases (compiled and interpreted)

  • Experience reviewing and validating cryptographic findings or remediation outputs

  • Experience with complex data migrations involving multiple systems

  • Understanding of database and file or filesystem re-encryption

  • Exceptional attention to detail and passion for correctness and quality

  • Proficiency with systems engineering and modern software development practices

  • Clear communicator able to explain cryptographic reasoning to technical and non-technical audiences

  • Excellent verbal and written communication skills in English

  • Familiarity with quantum-resistant and post-quantum cryptography concepts is a plus

  • Experience writing or refining Semgrep/OpenGrep rules is a plus

  • Experience with repository scanning and remediation applications is a plus

  • Experience with LLM and agentic software engineering flows is a plus

What we offer

  • Development program (training & conferences, internal knowledge sharing)

  • Outstanding referral bonuses

  • Private health insurance

  • 7 days of sick leave at 100% pay

  • 25 days of vacation

  • Paternity leave – 15 days for new dads

  • Reduced working hours for the first month after returning from maternity

  • Mental health program

  • English language courses

  • FitPass

Department
Global Services - Engineering
Role
Security Engineer
Locations
Belgrade Office, Novi Sad Office
Remote status
Hybrid
Employment type
Full-time

About Devtech

We provide digital innovation services that help Fortune 1000 and emerging companies transform, scale, and disrupt through next-gen cloud and AI solutions.

Founded in 2012, Devtech successfully bootstrapped the business for many years before securing institutional growth capital in 2022 and 2024 to fuel our next stages of growth. We are a team of over 300 professionals across Europe and North America.

We believe that the best work happens in an environment of autonomy, mastery, and purpose, where people can grow and make impact. As we continue to scale globally, we're excited to welcome new team members who share our curiosity and growth mindset. Let's make an impact together!

Global Services - Engineering · Belgrade Office, Novi Sad Office · Hybrid

Application Security Engineer

Loading application form

Already working at Devtech?

Let’s recruit together and find your next colleague.

Applicant tracking system by Teamtailor