Application Security Engineer

JOB DESCRIPTION

Job purpose:
We are seeking an experienced Application Security Engineer to join our team. This role will collaborate with other IT professionals as part of our security engineering team to anticipate and correct vulnerabilities in both client-facing and internal applications. The ideal candidate will not just be an expert in application security but have the expertise and capability to provide technical leadership and guidance on security best practices to the entire development team.
Key responsibilities:
Perform proof of concept testing for new security products
Evaluate new technologies and tools that will impact organization security.
Analyze proprietary and third-party software to identify and address security concerns.
Assess the organization’s security architecture and scan code to identify vulnerabilities.
Guide development teams on defensive coding and remediation techniques
Provide security training and guidance for developer teams
Review existing applications and software to identify security improvements
Install, configure, and use new security tools implemented by the organization
Develop and refine app and product security best practices
Maintain documentation of application security controls
Conduct penetration testing and provide retesting support
Serve as a subject matter expert on common attack vectors and application security for developer teams and organization leadership

JOB REQUIREMENT

4+ years of experience in an IT role, preferably in a security team
Experience assessing vulnerabilities in business software and systems.
Experience establishing software development policies.
Experience with application design, risk assessment, and penetration testing
Experience performing blackbox, greybox, and whitebox security assessments of applications using HTTP and/or proprietary protocols
Container DevSecOps experience
Proficient in at least one programming language such as Java, .NET, or Python
Deep knowledge of common security vulnerabilities
Knowledge of application architectural patterns (MVC, Microservices, etc.)
Knowledge of secure development lifecycle principles
Strong problem-solving and analytical skills
Education and Experience required: Bachelor’s degree in engineering, computer science, information security, or a related field
Prefer Qualifications
Experience with iOS or Android security
Certification in information security (CISSP, CISM, CEH, etc.)

WHAT'S ON OFFER

Competitive salary
13th salary and performance bonus
15 days Annual Leave and 5 days Sick Leave
Healthcare Insurance for employee
Laptop Provided
Career path, training courses
Other benefits of Company will be share details in the offer stage

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666
We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Product

Technical Skills:

Security

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Salary:

Negotiation

Job ID:

J01301

Status:

Close

Related Job:

Senior Information Security Officer (Security Control & Compliance)

Ho Chi Minh - Viet Nam

Product

  • Security

Responsible for implementing, operating, and monitoring application security controls and compliance activities to ensure that enterprise applications are secure, resilient, and compliant with internal policies and external regulatory requirements. #Key Responsibilities: Responsibilities and accountabilities Application Security Implement and operate application security solutions including WAF, DDoS protection, and PAM (Privileged Access Management). Monitor privileged access activities, detect abnormal behavior, and escalate security risks. Collaborate with development and infrastructure teams to ensure security-by-design across the application lifecycle (SDLC/DevSecOps). Support application vulnerability assessment activities and track remediation progress. Compliance & Policy Management Support the development, maintenance, and updates of information security policies and procedures. Ensure compliance with internal security standards and external regulatory requirements (e.g., audit requirements, SSC, Stock Exchange regulations if applicable). Prepare documentation and reports for internal and external audits. Security Monitoring & Reporting Monitor application-related security events and access activities. Analyze and report security risks, vulnerabilities, and incidents to management. Track remediation status of identified security issues and ensure timely resolution. Security Awareness & Training Support the execution of information security awareness programs for employees. Assist in developing training materials and communication related to application security best practices. Project Support & Implementation Participate in research, testing, and deployment of new application security solutions. Support security-related initiatives in digital transformation and system upgrade projects. Contribute to security requirement definition in IT and business projects.

Negotiation

View details

DFT Engineer

Ho Chi Minh, Ha Noi - Viet Nam

Outsource

  • Chip DFT
  • DFT

Manage technology in projects and provide technical guidance or solutions for work completion Provide technical guidance or solutions Develop and guide team members in enhancing their technical capabilities and increasing productivity Prepare and submit status reports for minimizing exposure and risks on the project or closure of escalations Ensure process compliance in the assigned module and participate in technical discussions or review.

Negotiation

View details

Physical Design Engineer (HCM)

Ho Chi Minh, Ha Noi, Da Nang, Others, Hai Phong - Viet Nam

Outsource

  • Chip Physical Design

Executing complete RTL / Gate-level Netlist to GDSII flow for blocks or full chip. Taking ownership of the physical implementation of design partitions/blocks, ensuring timing clean blocks that meet sign-off targets including DRC, LVS & IR closure for tape-out readiness. Handling floor planning & Power Planning Managing Timing Closure & STA Overseeing CTS & Signal Integrity Conducting Physical Verification & Sign-off

Negotiation

View details