Senior Application Security Engineer

An organisation is searching for a Senior Application Security Engineer, please see some of their job details below.

Responsibilities

• Develop, implement, and continuously improve application security policies, processes, and procedures
• Conduct security assessments and penetration testing of web and mobile applications
• Provide guidance and recommendations to developers on secure coding practices
• Collaborate with cross-functional teams to integrate security into the Software Development Life Cycle (SDLC)
• Monitor and analyze security vulnerabilities, threats, and incidents, and respond accordingly
• Participate in security incident response and investigations
• Review and assess third-party vendor security controls and implementations
• Design and implement secure authentication and authorization mechanisms
• Stay updated on the latest security technologies, trends, and vulnerabilities
• Conduct security awareness training for IT teams and end users.

Minimum Qualifications

• Bachelor's degree in Computer Science, Information Technology, or related field.
• Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH) certification preferred.
• Strong experience in application security testing, secure coding practices, and vulnerability management.
• Proficiency in security assessment tools such as Burp Suite, OWASP ZAP, or similar.
• Excellent analytical and problem-solving skills with a deep understanding of security frameworks and best practices.