Job Description

We are looking for an experienced Application Security Engineer to join our Client! As an Application Security Engineer, you will work as a part of our security engineering team, and you will collaborate with application teams to ensure that user data is protected.


Responsibilities :

o Drive application security within the overall Secure Software Development Lifecycle (S-SDLC) from inception to delivery. o Work closely with product, engineering, and DevSecOps teams to deliver secure software across web, API, mobile, and other platforms. o Enable secure software development and delivery by producing and delivering actionable security requirements, guidelines, and design patterns to engineering. o Guide team and third-party vendors in performing threat models, architecture reviews, code reviews, and pen tests. o Run a Vulnerability Disclosure / Bug Bounty Program, and triage vulnerabilities. o Build architecture diagrams, process flows, read code, and pen test applications. o Conducting training to developers on secure coding practices

Requirements :

o 5+ years of proven experience in cybersecurity, software engineering, computer science with a focus on security, or a related field. o 2+ years experience in secure code review or writing enterprise applications. o Experience and working knowledge of SAST, DAST and SCA tools (including their strength and weakness) is a plus. o Bachelor's degree in software engineering, computer science, or related field preferred. o Certifications in Application Security and Penetration Testing such as OSCP, OSCE, OSWE and CEH or cybersecurity certifications including CISSP, CISM, CompTIA Security+ and GSEC are encouraged. o Experience / knowledge in blockchain, digital assets and their associated weaknesses is a plus!