MyPage is a personalized page based on your interests.The page is customized to help you to find content that matters you the most.


I'm not curious
106

Application Security Consultant

Position Type Permanent
No. of opening(s) 1
Location Singapore
Posted 13-April-2020
Description
Exciting opportunity for passionate cyber security practitioners, who want to use their skills and knowledge to make a difference in the world we live in.

This role will challenge you to ensure software and systems are designed and implemented to the highest security standards.

You will be required to propose and integrate security practices and processes into software development (both Agile & Waterfall) and how security testings can be integrated and automated as part of software delivery pipelines.
Skill-set Requirement
  • Degree in Computer Science, Engineering, Information Systems;
  • Has at least 2 years of work experience in the area of application security;
  • Experienced in conducting secure code review, verifying security controls are present, working as intended;
  • Experience in threat modelling - able to prepare threat profile to identify, quantify and address security risks;
  • Familiar with CI/CD and DevOps concepts and how security testing can be integrated and automated as part of software delivery pipelines;
  • Familiar with secure Web Services, Web and mobile API architecture (such as RESL, SOAP, SSL/TSL, HTTPS);
  • Familiar with common web application vulnerabilities and technical knowledge to address and mitigate vulnerabilities;
  • Knowledge of security best practices, secure coding practice guidelines, IM8, OWASP, CoBIT framework, ISO 27001;
  • Excellent communication and presentation skill.

Desirable Skills
  • Certified Information Systems Auditor (CISA) , Certified Information Systems Security Professional (CISSP);
  • Knowledge of Static Application Security Testing (SAST) or Dynamic Application Security Testing (DAST) tools, e.g. Appscanner, Fortify, Veracode, Appscan, Burp suite, Qualys, Webinspect.
Job Responsibilities
  • Responsible to propose and integrate security practices and processes into software development to ensure the delivery of applications have vulnerabilities resolved and mitigated;
  • Responsible to develop secure application development practices, standards, guidelines and solutions towards adopting technical best practices and uplifting the Application Security (AppSec) capabilities within the organization;
  • Perform Application Security assessment using a combination of threat modelling, vulnerability research, code scanning, application security testing with recommendation of proper remediation actions;
  • Work closely with DevOps Team to create tools and automation to help test and improve the security in the CI/CD pipeline;
  • Apply & ensure cyber security principles are adhere to during entire system development lifecycle;
  • Lead in threat modelling to identify and resolve security risks;
  • Identify gaps in security and improve security protocols and procedures in application development processes;
  • Disseminate application security findings, standards and approach within the team;
  • Enhance security competency in development teams (e.g. secure coding practices and processes);
  • Provide training to development team on security standards, policies, procedures and quality assurance best practices related to secure coding.
Domain
Government
Role Compatibility
Application Development, Architecture, Business Analysis, Security/Audit Operations, Software Quality Assurance
Level Compatibility
Lead Architect, Lead Consultant, Security Analyst, Technical Consultant

Interested in this Job? Do you want to Re-Apply?

Name
*
Email
*
Phone
*
Location *
LinkedIn Profile
*
Tap to Attach your LinkedIn Profile
Resume
*

Company Details

Sciente International Pte Ltd
Sciente International Pte Ltd

 
Awards & Accolades for MyTechLogy
Winner of
REDHERRING
Top 100 Asia
Finalist at SiTF Awards 2014 under the category Best Social & Community Product
Finalist at HR Vendor of the Year 2015 Awards under the category Best Learning Management System
Finalist at HR Vendor of the Year 2015 Awards under the category Best Talent Management Software
Hidden Image Url