MyPage is a personalized page based on your interests.The page is customized to help you to find content that matters you the most.


I'm not curious
35

Application Security Engineer

Position Type Direct Contract
No. of opening(s) 1
Location Singapore
Posted 14-August-2020
Description
Our client in the media industry is seeking a strong Application Security Engineer to assist in the maintenance of their automated source code scanning platform as well as to perform secure code reviews for their web and mobile applications.
Skill-set Requirement
  • Bachelor in Computer Science or related field;
  • Has at least 3 years of experience in application security;
  • Experience in conducting secure code review, dynamic application security testing and manual security testing on both web and mobile applications;
  • Ability to prepare threat profile to identify, quantify and address security risks;
  • Good understanding of common web and mobile application vulnerabilities and how to mitigate these vulnerabilities;
  • Familiar with DevOps and CI/CD;
  • Knowledge of security best practices and guidelines within the industry;
  • Excellent communication and presentation skills.

Desirable Skills
  • Knowledge of Static Application security tools such as Fortify, Burp Suite Professional and Checkmarx;
  • Familiar with Cloud Security (e.g. AWS, Azure);
  • Handled Bug Bounty Program;
  • Familiar with Container security implementation.
Job Responsibilities
  • Oversee the security practices and processes of the entire SDLC and to minimize all potential vulnerabilities;
  • Develop secure application development practices, standards, guidelines and solutions to build up the organisation's application security capabilities;
  • Perform application security assessment using threat modelling, vulnerability research, code scanning and application security testing;
  • Work closely with various stakeholders (e.g. developers) to ensure that all vulnerabilities are mitigated;
  • Partner the DevOps team to create tools and automation to improve the security within the CI/CD pipeline;
  • Identify gaps in security and improve security protocols and procedures in the SDLC;
  • Provide training and support to the development team on security standards, policies and processes.
Domain
Media/Advertising
Role Compatibility
Security/Audit Operations
Level Compatibility
Security Analyst

Interested in this Job? Do you want to Re-Apply?

Name
*
Email
*
Phone
*
Location *
LinkedIn Profile
*
Tap to Attach your LinkedIn Profile
Resume
*

Company Details

Sciente International Pte Ltd
Sciente International Pte Ltd

 
Awards & Accolades for MyTechLogy
Winner of
REDHERRING
Top 100 Asia
Finalist at SiTF Awards 2014 under the category Best Social & Community Product
Finalist at HR Vendor of the Year 2015 Awards under the category Best Learning Management System
Finalist at HR Vendor of the Year 2015 Awards under the category Best Talent Management Software
Hidden Image Url