Application Security Engineer

Bangkok
Permanent

Responsibilities:

  • Ensure security and quality of a wide range services and products
  • Conduct regular security assessments, code inspection, design review and penetration testing on new and existing products to proactively find potential vulnerabilities
  • Security consulting of implementation and enforcement of secure design principles according to policies, standards and security guideline for web and mobile application
  • Provide security expertise and guidance to engineering and business teams
  • Build security tools and monitoring that enables security team to scale 
  • Work with software engineers to analyze security vulnerabilities and follow through with issues until resolution

 

Qualifications:

  • 3 years of experience in application-level vulnerability testing, penetration testing  or building software security controls
  • Experience in identifying and remediating common web and mobile application vulnerabilities such as OWASP Top 10, Mobile Top 10
  • Experience in use of various commercial and open source penetration testing tools
  • Foundation in, and in-depth technical knowledge of software development, security engineering, computer and network security, cloud security, authentication, security protocols and applied cryptography

 

Preferred Qualifications:

  • Understanding of modern IT infrastructure; cloud environments (AWS preferred) and Linux containers and orchestration systems