استخدام Application Security Engineer

شرح موقعیت شغلی

• Perform penetration testing.
• Consult with developer teams on secure coding practices.
• Triage and validate security vulnerabilities found or reported, and serve as a Subject Matter Expert in AppSec to the developer team in identifying mitigation solutions.
• Create threat models of new applications and features to systematically understand how they can be attacked in order to prioritize control development.
• Partner with teams from Developer, DevOps, and product working together to build and deliver secure products.
• Integrate SAST/DAST into CI/CD pipeline.
• Make suggestions for security improvements.
• Perform ongoing application security testing and code review to improve software security.

• Have in-depth experience in Penetration Testing in Web and API.
• Experience with multiple languages such as, Go, Java, PHP, etc. and understand how to detect and remedy related security issues such as OWASP top 10.
• Ability to discover the business logic vulnerability.
• Have code proficiency using one or more of the following languages, such as Python, Go, PHP, or Bash.
• Have in-depth knowledge of security tools including Kali, and Burp Suite.
• Hands-on experience implementing and tuning SAST/DAST in CI/CD.
• Understanding of DevOps, CI/CD environments, familiarity with Docker/OKD.

• Excellent written and verbal communication skills in English.
• Effective collaboration and team integration.
• Strong problem-solving abilities through imaginative and creative thinking.
• Maintain an insatiable curiosity and an aggressive outsider mindset.
• Result Oriented (Essential).
• Communication (Essential).
• Technical Expertise (Essential).
• Problem Solving/ Analytical Thinking (Essential).
• Accountability (Essential).

مهارت‌های مورد نیاز

• Software Security
• C/C++
• CI/CD

زبان‌های مورد نیاز

• انگلیسی

حداقل سابقه کار

• سه تا شش سال

جنسیت

• مهم نیست

وضعیت نظام وظیفه

• معافیت تحصیلی معافیت دائم پایان خدمت

مشاهده آگهی‌های استخدام مشابه