We are looking for an experienced Application Security Engineer to join our Client! As an Application Security Engineer, you will work as a part of our security engineering team, and you will collaborate with application teams to ensure that user data is protected.
Responsibilities :
o Drive application security within the overall Secure Software Development Lifecycle (S-SDLC) from inception to delivery.
o Work closely with product, engineering, and DevSecOps teams to deliver secure software across web, API, mobile, and other platforms.
o Enable secure software development and delivery by producing and delivering actionable security requirements, guidelines, and design patterns to engineering.
o Guide team and third-party vendors in performing threat models, architecture reviews, code reviews, and pen tests.
o Run a Vulnerability Disclosure / Bug Bounty Program, and triage vulnerabilities.
o Build architecture diagrams, process flows, read code, and pen test applications.
o Conducting training to developers on secure coding practices
Requirements :
o 5+ years of proven experience in cybersecurity, software engineering, computer science with a focus on security, or a related field.
o 2+ years experience in secure code review or writing enterprise applications.
o Experience and working knowledge of SAST, DAST and SCA tools (including their strength and weakness) is a plus.
o Bachelor's degree in software engineering, computer science, or related field preferred.
o Certifications in Application Security and Penetration Testing such as OSCP, OSCE, OSWE and CEH or cybersecurity certifications including CISSP, CISM, CompTIA Security+ and GSEC are encouraged.
o Experience / knowledge in blockchain, digital assets and their associated weaknesses is a plus!
MNCJobz.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.