Senior Application Security Engineer

Ho Chi Minh City, Ho Chi Minh City, Vietnam

Katalon logo


Katalon is the leading low-code test automation solution for Web, API, Mobile, and Desktop apps. Packed with native CI/CD integrations, start for free now!

Established in 2015, Katalon, Inc. is a global product company providing an End-to-End Software Quality Platform that empowers teams to deliver software with excellence and confidence and proudly achieve the Great Place to Work® Certification™, both in Vietnam and the United States in 2022.

Growing from a team of 6 back in 2015 to over 250 employees now, Katalians has been experiencing exponential growth across the region with one vision: “To become the most popular software quality platform in the world by providing indispensable testing tools for software teams of all sizes”.

We are looking for a Senior Application Security Engineer who thrives working with engineering teams to secure their products across the entire software development lifecycle.

Key Responsibilities:

  • Participate in and support application security reviews and threat modeling, including code review and dynamic testing;
  • Own and perform application security vulnerability management;
  • Support the Vulnerability Disclosure Program;
  • Facilitate and support the preparation of security releases;
  • Support and consult with the product and DevSecOps teams in application security;
  • Lead both critical and regular security releases;
  • Assist in the creation of application security training;
  • Assist in the development of automated security testing to validate that secure coding best practices are being used;
  • Source code auditing;
  • Reviewing new features and architectural designs;
  • Finding ways to empower engineering teams to build secure software by default;
  • Assist in Penetration Testing both internally and externally.


Key Qualifications

  • BSc in Computer Science or related or 5+ years of experience;
  • Relevant information security certificates (GIAC GWEB, CSSLP, CCSP, etc.);
  • Strong ability to work with colleagues to understand our products and then come up with ways to improve existing security infrastructure;
  • Ability to read and understand code is very important, key languages include;
  • Experience with Penetration testing tools and Devsecops tools such as SonarCloud, Snyk, Burp Suite;
  • Solid understanding of web application security ( Web Pentest). Penetration Testing experience is a plus;
  • Experience in cloud security architecture and infrastructure (AWS is preferred);
  • Experience coding in at least one scripting language;
  • Able to reason about security decisions;
  • Experience leading projects from start to finish and mentoring other security practitioners;
  • An ability to communicate ideas clearly and effectively to engineers who know way more than you about their code;
  • Familiarity with common security libraries, security controls, and common security flaws;
  • Experience with OWASP, static/dynamic analysis, and common security tools;
  • A basic understanding of network and web-related protocols (such as TCP/IP, UDP, HTTP, HTTPS, protocols);
  • Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner;
  • Experience identifying security issues through code review.

Nice To Have, but not required:

  • Presentation experience at all levels
  • Experience working with compliance, privacy, IT, networking, or related functions


At Katalon, we bring together self-starting, open-minded, and talented people while actively promoting a transparent and growth-enabling working environment. But don’t just take our words for it. Take a better look below!

  • Attractive compensation package including achievable Quarterly Performance Bonus (up to 120% gross monthly salary) and 13th-Month Bonus
  • 19 annual leave days and other supportive allowances
  • Flexible working time and place together with high-end working equipment at the high-class new office at Viettel Building (Dist. 10, HCMC)
  • Diverse & International Working Environment with Agile culture
  • Premium healthcare package for you and your loved ones
  • A company trip every summer, an annual year-end party, team-building activities, and so much more fun are waiting for you!

Katalon is proud to be an equal opportunity employer. We care about our people and celebrate our differences. We want to work with talented, collaborative, and innovative people. We do not discriminate in hiring or any employment decision based on race, color, religion, national origin, age, sex (including pregnancy, childbirth, or related medical conditions), marital status, ancestry, physical or mental disability, genetic information, veteran status, gender identity or expression, sexual orientation, or other characteristics protected by law.

* Salary range is an estimate based on our salary survey at

Tags: Agile Application security Audits AWS Burp Suite CCSP Cloud Compliance Computer Science DevSecOps GIAC OWASP Pentesting Privacy Scripting TCP/IP Vulnerability management

Perks/benefits: Flex hours Medical leave Salary bonus Startup environment Team events

Region: Asia/Pacific
Country: Vietnam
Job stats:  7  0  0

Other jobs like this

Explore more Cybersecurity career opportunities

Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cyber Security in general, filtered by job title or popular skill, toolset and products used.