Application Security Engineer

JOB DESCRIPTION

Job purpose:
We are seeking an experienced Application Security Engineer to join our team. This role will collaborate with other IT professionals as part of our security engineering team to anticipate and correct vulnerabilities in both client-facing and internal applications. The ideal candidate will not just be an expert in application security but have the expertise and capability to provide technical leadership and guidance on security best practices to the entire development team.
Key responsibilities:
Perform proof of concept testing for new security products
Evaluate new technologies and tools that will impact organization security.
Analyze proprietary and third-party software to identify and address security concerns.
Assess the organization’s security architecture and scan code to identify vulnerabilities.
Guide development teams on defensive coding and remediation techniques
Provide security training and guidance for developer teams
Review existing applications and software to identify security improvements
Install, configure, and use new security tools implemented by the organization
Develop and refine app and product security best practices
Maintain documentation of application security controls
Conduct penetration testing and provide retesting support
Serve as a subject matter expert on common attack vectors and application security for developer teams and organization leadership

JOB REQUIREMENT

4+ years of experience in an IT role, preferably in a security team
Experience assessing vulnerabilities in business software and systems.
Experience establishing software development policies.
Experience with application design, risk assessment, and penetration testing
Experience performing blackbox, greybox, and whitebox security assessments of applications using HTTP and/or proprietary protocols
Container DevSecOps experience
Proficient in at least one programming language such as Java, .NET, or Python
Deep knowledge of common security vulnerabilities
Knowledge of application architectural patterns (MVC, Microservices, etc.)
Knowledge of secure development lifecycle principles
Strong problem-solving and analytical skills
Education and Experience required: Bachelor’s degree in engineering, computer science, information security, or a related field
Prefer Qualifications
Experience with iOS or Android security
Certification in information security (CISSP, CISM, CEH, etc.)

WHAT'S ON OFFER

Competitive salary
13th salary and performance bonus
15 days Annual Leave and 5 days Sick Leave
Healthcare Insurance for employee
Laptop Provided
Career path, training courses
Other benefits of Company will be share details in the offer stage

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666
We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Fund Management

Technical Skills:

Security

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Salary:

Negotiation

Job ID:

J01301

Status:

Close

Related Job:

Senior/ Lead Data Engineer (Data Platform / MLOps)

Ho Chi Minh, Ha Noi - Viet Nam

Information Technology & Services

You will be responsible for managing, designing, and enhancing data systems and workflows that drive key business decisions. The role is focused 75% on data engineering, involving the construction and optimization of data pipelines and architectures, and 25% on supporting data science initiatives through collaboration with data science teams for machine learning workflows and advanced analytics. You will leverage technologies like Python, Airflow, Kubernetes, and AWS to deliver high-quality data solutions. Architect, develop, and maintain scalable data infrastructure, including data lakes, pipelines, and metadata repositories, ensuring the timely and accurate delivery of data to stakeholders. Work closely with data scientists to build and support data models, integrate data sources, and support machine learning workflows and experimentation environments. Develop and optimize large-scale, batch, and real-time data processing systems to enhance operational efficiency and meet business objectives. Leverage Python, Apache Airflow, and AWS services to automate data workflows and processes, ensuring efficient scheduling and monitoring. Utilize AWS services such as S3, Glue, EC2, and Lambda to manage data storage and compute resources, ensuring high performance, scalability, and cost-efficiency. Implement robust testing and validation procedures to ensure the reliability, accuracy, and security of data processing workflows. Stay informed of industry best practices and emerging technologies in both data engineering and data science to propose optimizations and innovative solutions.

Negotiation

View details

Senior Software Engineer (Backend + Network)

Ho Chi Minh - Viet Nam

Product

  • Backend
  • Network

Continuously monitor and analyze new VPN providers, proxy services, and anonymization tools. Conduct investigations on IP allocation patterns, hosting provider behaviors, and network infrastructure changes. Develop and maintain comprehensive databases of known VPN/proxy IP ranges and behavioral signatures. Research emerging threats such as residential proxies, mobile proxies, and distributed proxy networks. Monitor darkweb marketplaces and security forums for emerging proxy/VPN trends. Perform deep packet analysis and network traffic pattern recognition. Develop and maintain the system using PHP, Python, and/or Go. Optimize VPN/Proxy detection algorithms. Design scalable infrastructure to handle millions of IP lookups per day. Implement monitoring and alerting systems for detection accuracy and system performance. Analyze production incidents related to false positives/negatives in threat detection. Collaborate with DevOps team on deployment of detection rule updates and model improvements. Investigate customer-reported bypass attempts and develop rapid response solutions. Provide technical expertise during customer security consultations. Support sales engineering team with technical demonstrations and proof-of-concepts. Document threat analysis findings and detection methodologies for internal and customer use. Maintain relationships with cybersecurity vendors, threat intelligence providers, and ISPs. Monitor industry threat reports, security advisories, and academic research. Participate in cybersecurity conferences and forums to stay current with the threat landscape. Contribute to open-source security tools and research when appropriate.

Negotiation

View details

Data Engineer - RefData

Ho Chi Minh, Ha Noi - Viet Nam

product, Investment Management

  • Data Engineering

Developing an automated data processing system and overseeing its maintenance Consolidating and integrating various data sources and databases into a unified system Designing interfaces and micro services using Python Enhancing the organization's data through NLP and AI models Preparing and cleaning semi-structured or unstructured data Creating effective algorithms for data processing Testing and incorporating external APIs Assisting the Business Analysts team

Negotiation

View details