Snaphunt Pte Ltd

Application Security Engineer

Snaphunt Pte Ltd| Date Posted: 16-Oct-2020
Save Job
Job Nature:
Permanent
Position Level:
Entry Level, Experienced
Qualification:
ITE/ NITEC/ Higher NITEC, Diploma, Bachelor's / Honours

Job Description

The Offer 

 

  • Contribute to projects for clients in the banking industry
  • Excellent learning and career development opportunities
  • Stimulating and motivating work environment

 

The Employer 
 

Our client is a consulting company that provides Business Management & Information Systems services to clients in the Financial Services industry. With a talented team armed with in-depth knowledge, the company is confident in tackling any challenges that a volatile and competitive market brings. The company also prides itself in building loyalty and trust with its consultants and partners.

 

The Job 
 

In this role, you will research and monitor current software security risk, define the difference types of security tests to be performed and provide software security training to the development team. 

You will be responsible for : 

  • Integration of security into software development during design and development
  • Analysis of IT systems architecture in terms of security and risk/threat modelling
  • Managing security base line documentation & risk register for the domain
  • Coordinating with the third-party vendors and internal stakeholders for the penetration and black box testing
  • Reviewing and assessing the results of external penetration testing, and agreeing on corrective action
  • Supporting the development teams in analysis of security issues and assisting them to find the solutions as well as infrastructure/middleware teams in implementation of security solutions
  • Performing security code reviews and white box penetration testing during the development sprints
  • Automation of security testing process


The Profile 

 

  • You have at least a Bachelor’s degree in Computer Science or the equivalent. Having a master’s degree is a plus
  • You have at least 5 years of hands-on experience doing security code analysis or reviews with 2 years of being a software developer with hands-on experience doing penetration and vulnerabilities tests.
  • You have experience of a secure software life cycle in a software house or large IT department.
  • You have a certification around security: GSSP-JAVA, GWEB, ECSP, CSSLP, CEH, CES etc.
  • You have the capacity to provide deep perspective on cyber and security threats
  • You possess knowledge and experience of common security protocols (e.g. TLS, OAuth 2.0, SAML, Open ID Connect, LDAP etc.) and crypto libraries (Open SSL, JWT etc.)
  • You have knowledge and experience of Web security (OWASP etc.) and Javascript/SPA security, as well as static code security analysis and security code reviews
  • You have experience working with multiple development teams and vendors in organising tests & managing security topics
  • You have excellent written and oral communication skills.
  • You are a strong critical thinker with problem solving aptitude.


Ref :06325507

Company Overview
Snaphunt Pte Ltd