Job Responsibilities:
Perform security assessments on applications, including code reviews, architecture reviews,
penetration test and configuration reviews, to identify and mitigate potential vulnerabilities.
Identify and evaluate potential threats to the application and recommend appropriate mitigation strategies.
Collaborate with development teams to define and integrate security requirements into the software development process.
Provide training and guidance to developers on secure coding practices, common vulnerabilities (such as those listed in the OWASP Top 10), and how to avoid them.
Implement and manage security tools like Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) within the CI/CD pipeline.
Administrate of Web Application Firewall.
Develop and enforce application security policies and standards across the organization.
Cooperate with other security staff to ensure knowledge sharing and full visibility.
Job Requirements:
A bachelor's degree in Computer Science, Information Security, or a related field.
Minimum 3 years of experience in cybersecurity.
Experience of application security architecture design.
Familiarity with security principles (such as OWASP top 10, NIST standards), risk assessments, security controls planning.
Excellent spoken and written communication skills.
Hand On experience on Nessus Scanner, AWS Cloud Environment.
Must be able to learn fast and adapt quickly to ever changing requirements and priorities.
Strong analytical and problem-solving abilities