Application Security Engineer

JOB DESCRIPTION

Job purpose:

We are seeking an experienced Application Security Engineer to join our team. This role will collaborate with other IT professionals as part of our security engineering team to anticipate and correct vulnerabilities in both client-facing and internal applications. The ideal candidate will not just be an expert in application security but have the expertise and capability to provide technical leadership and guidance on security best practices to the entire development team.

Key responsibilities:

Perform proof of concept testing for new security products

Evaluate new technologies and tools that will impact organization security.

Analyze proprietary and third-party software to identify and address security concerns.

Assess the organization’s security architecture and scan code to identify vulnerabilities.

Guide development teams on defensive coding and remediation techniques

Provide security training and guidance for developer teams

Review existing applications and software to identify security improvements

Install, configure, and use new security tools implemented by the organization

Develop and refine app and product security best practices

Maintain documentation of application security controls

Conduct penetration testing and provide retesting support

Serve as a subject matter expert on common attack vectors and application security for developer teams and organization leadership

JOB REQUIREMENT

4+ years of experience in an IT role, preferably in a security team

Experience assessing vulnerabilities in business software and systems.

Experience establishing software development policies.

Experience with application design, risk assessment, and penetration testing

Experience performing blackbox, greybox, and whitebox security assessments of applications using HTTP and/or proprietary protocols

Container DevSecOps experience

Proficient in at least one programming language such as Java, .NET, or Python

Deep knowledge of common security vulnerabilities

Knowledge of application architectural patterns (MVC, Microservices, etc.)

Knowledge of secure development lifecycle principles

Strong problem-solving and analytical skills

Education and Experience required: Bachelor’s degree in engineering, computer science, information security, or a related field

Prefer Qualifications

Experience with iOS or Android security

Certification in information security (CISSP, CISM, CEH, etc.)

WHAT'S ON OFFER

Competitive salary

13th salary and performance bonus

15 days Annual Leave and 5 days Sick Leave

Healthcare Insurance for employee

Laptop Provided

Career path, training courses

Other benefits of Company will be share details in the offer stage

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666

We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Product

Technical Skills:

Security

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Job ID:

J01301

Status:

Related Job:

Head of Engineer - Tech Fraud & Scams VN

Ho Chi Minh

Product

Develop an integrated roadmap for the strategic execution of Customer Onboarding and Mastery, Financial Crime, and Fraud's strategic ambitions. Lead engineering teams across these domains to drive outcomes, necessitating domain knowledge in these areas. Collaborate with business teams and product owners to validate requirements and monitor post-delivery performance. Oversee the runtime of applications in production and provide active operational support. Lead efforts for cyber security updates and ensure software currency versions remain up to date. Manage investment delivery across CET to maintain alignment between domains and ensure effective spending while providing insights on prioritization of spend and its effectiveness.

Negotiation

View details

Head of Engineer - CET

Ho Chi Minh - Viet Nam

Product

Develop an integrated strategic roadmap for the execution of the Customer Onboarding and Mastery, Financial Crime, and Fraud's strategic ambitions, and drive the process from development to implementation. Manage multiple engineering teams across the Customer Onboarding and Mastery, Financial Crime, and Fraud domains to achieve desired outcomes, requiring domain knowledge in these areas. Collaborate with business teams and product owners to validate requirements before and after delivery through showcases and Day 2 production monitoring. Take ownership of the development and runtime of applications in production, providing active operational support and establishing a clear support model with engineers proficient in site reliability engineering. Lead efforts related to cyber security updates, ensuring that software currency versions are kept up to date and infrastructure is patched regularly. Oversee investment delivery across the organization to maintain alignment between domains, effectively allocate investments, and provide insights on the prioritization and effectiveness of spending.

Negotiation

View details

Head of Engineer - Home Ownership

Ho Chi Minh - Viet Nam

Product

Take charge of technical leadership for the Sub-Domain and ensure timely delivery of Software Development Life Cycle Epics and Features. Guide, train, and support technology resources to enhance their skills and knowledge for optimal performance and to foster a highly effective team. Drive technical delivery with a focus on enhancing speed, cost, and quality of outcomes, while ensuring alignment of the squads on objectives and outcomes. Facilitate lean portfolio management across the Domain by connecting business roadmaps with software delivery and overseeing cross-functional, agile teams to meet performance targets. Accountable for addressing technical or delivery obstacles that cannot be resolved at the squad level. Oversee financials to ensure adherence to the plan and drive continuous improvement in development and delivery processes. Develop a leading market capacity and strategically deploy departmental resources to achieve optimal resource allocation and successful product development.

Negotiation

View details