Application security architect
Posted: April 27, 2021, 10:31 a.m. - Full Time - RemoteWhat you'll do:
- Partner with multiple application development teams within client organization, to ensure secure development of applications
- Develop a broad and deep technical understanding of applications, services and architectures pertaining to the client application organization.
- Interpret results from exercises such as code review and penetration testing stakeholders, and advise on remediation and mitigation as well as incorporate learnings into future designs
- Conduct architecture reviews, threat modeling, design reviews, code review on web and mobile applications and web services as and when required Develop documentation, and a knowledge base to be used by developers for implementing secure coding practices
- Research and maintain knowledge of changing landscape of application security, latest threats, and attacker tools, techniques and procedures
- Provide recommendations for missing application security controls
- Support and provide consultation to development teams in the area of application security
- Occasional travel to client locations might be required
What you will need to succeed:
- Knowledge of common application security flaws, threat modeling, security controls and and common security libraries
- Understanding of security engineering principles including cryptography, access control, system security, and security operations
- Experience working with Developer organizations
- Experience with code scanning (SAST, DAST) tools for C/C++, Java, and Python languages and relevant frameworks.
- Excellent communication skills (written and verbal) with an ability to explain complex topics in a clear and concise manner to both technical and non-technical audiences
- Basics to intermediate development and scripting skills in at least one programming language
- Knowledge of cloud services and cloud security controls
- Experience with pentesting (plus)
- Experience with code reviews (plus)
What we offer you:
- Competitive compensation packages
- Paid parental leave
- Paid medical leave
- Paid annual leave
- Employer matched EPF contribution (separate from salary package)
- Employer-paid High-quality individual and family medical insurance
- Other benefits
- Highly challenging environment with unmatched growth potential