Application Security Engineer 4
Essential Duties and Responsibilities:
- Provide application/product security guidance to globally distributed product development organization.
- Advise and educate development teams with respect to application security best practices, security automation within the SDLC, and the proper use of application security products and services.
- Perform application security assessments of internally developed products and systems, covering architecture, design, and implementation.
- Build threat models for and perform architectural risk assessments of internally developed products and systems.
- Perform automated and manual security code reviews.
- Build and maintain positive and productive working relationships with product development teams and individuals.
- Provide assistance in response to product security incidents where application / product security expertise is required.
- Participate in blameless postmortems and retrospectives in effort to improve security of products / systems.
- Develop security assessment scripts and frameworks.
- Develop applications and/or scripts as needed to support product security tooling, automation, or other day-to-day work.
- Continuously learn and keep abreast of the latest technical developments in the application/product security and cloud security spaces.
- Perform research into and present on relevant security technology, practices, and threats.
- Work closely with a small team of application security and penetration testing staff, in conjunction with product development, to ensure company products and services withstand foreseen and reasonable attacks.
Here’s what you’ll bring to the team:
- Bachelor’s Degree in Computer Science, Software Engineering, Computer Engineering, Electrical Engineering, Electronics Engineering, or related field
- 4+ years of experience as a software engineer/developer in a product development organization with a focus application security, specifically reviewing code, identifying security defects, and working with developers to make the appropriate corrections.
- 2+ years of hands-on, experience in application security reviewing, assessing, and providing guidance to product development teams.
- Knowledge of application security vulnerabilities and best practices including OWASP & SANS identified common security coding flaws, a general understanding of threat modeling, and automated & manual static security code analysis.
- Experience with application security scanning tools including SAST, SCA, and DAST; Familiarity with GitHub Advanced Security is a plus.
- Demonstrable knowledge of coding in two or more of the following: C#, Java, JavaScript, Python, or SQL.
- Knowledge of authentication & authorization techniques, public cloud security, and cryptography.
- Strong analytical and problem-solving skills.
- Excellent communication (oral, written, presentation) skills.
- Penetration testing experience is desirable.
- GWEB highly desirable; GWAPT, GXPN, OSCP, OSCE, OSWE, OSEE certifications also desirable.
Get notified for similar jobs
Success!
Successfully subscribed for similar jobs
Failure!
Get tailored job recommendations based on your interests.
Please check your email
Profile recommendations
Similar Jobs
-
Application Penetration Tester 3
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
The Application Penetration Tester will assist Asurion in developing truly secure products by providing best-in-class application security penetration testing and security assessment services to th...
-
Security Information & Event Management (SIEM) Engineer III
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
The SIEM Engineer III within the Monitoring and Response team contributes to a variety of global enterprise information security services in support of the Chief Security Officer. The Analyst III w...
-
Data Governance 2
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
Asurion is looking for an automation engineer with data analyst experience to join the Data Governance team to help us continue to grow and build a top-notch program. Our team is responsible for ma...
-
Data Governance 3
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
Asurion is looking for an automation engineer with data analyst experience to join the Data Governance team to help us continue to grow and build a top-notch program. Our team is responsible for ma...
-
SQA Analyst 2
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
The SQA Analyst oversees all aspects of the application and functional testing activities for a given effort. The SQA Analyst will define, develop, and maintain test plan and test cases, and will a...
-
IAM Engineer 3
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
Essential Duties & Responsibilities. Assist in day-to-day operational requests and requirements related to the IAM platform. Maintain and create IAM roles as requested or assigned. Use problem solving...
-
Senior Full Stack Engineer
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
We are looking for an experienced Senior Fullstack Engineer with a strong backend focus to design and develop scalable systems, contribute to frontend architecture, and collaborate with MLOps and i...
-
Sr. Analyst, Security Compliance
Location Calamba City, Laguna, Philippines Category Technology Job Type Full time
Responsible for the development, implementation and maintenance of Asurion’s compliance program, focusing on legal, regulatory and security standards compliance within the Philippines. Closely coll...
-
PHSOC Security Specialist
Location Calamba City, Laguna, Philippines Category Technology Job Type Full time
As an essential component of Asurion’s Global Security and Risk organization, the Asurion Philippines Security Operations Center (Ph-SOC) has the responsibility to proactively detect any situations...
Jobseekers Also Viewed
-
Application Penetration Tester 3
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
The Application Penetration Tester will assist Asurion in developing truly secure products by providing best-in-class application security penetration testing and security assessment services to th...
-
IAM Engineer 3
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
Essential Duties & Responsibilities. Assist in day-to-day operational requests and requirements related to the IAM platform. Maintain and create IAM roles as requested or assigned. Use problem solving...
-
Full Stack Engineer Intern
Location Singapore, Central Singapore, Singapore Category Technology Job Type Full time
Are you looking for some real-world experience as an intern for 3-6 months? Do you want to have exposure to a fast paced, global company and learn from the best? At Asurion, our teams work collabo...
-
Asurion Rookie
Location Calamba City, Laguna, Philippines Category Supply Chain
A Intern student for strategic management facilitates strategic projects aligned with company’s AOP that involve cross functional engagement of different departments within TCP walls to ensure deli...
-
Asurion Rookie
Location Calamba City, Laguna, Philippines Category Supply Chain Job Type Full time
The role will have hands-on experience on manufacturing set-up by completing tasks under the supervision of an Industrial Engineer.Industrial Engineering Student