Senior Application Security Engineer
Mexico City, Mexico City, Mexico
Backbase
We are the pioneers of Engagement Banking. Our industry-leading platform helps banks and other financial institutions get closer to their customers like…The Job in short
As a Senior Application Security Engineer you’ll work with development teams to ensure we build and maintain secure software that is used by millions of users around the globe. You have a hacker mindset and always strive to think like an attacker. You will be part of the Backbase Security Guild where we share knowledge and discuss security for many different domains.
Meet the job
Your core responsibility is to analyse the software from a security perspective, and to identify and resolve security issues. Your input helps to improve the secure SDLC with its tools and processes. You validate that application security requirements have been met. You have expert understanding of application security and application security vulnerabilities. You provide guidance and workshops to developers and QA engineers on secure coding, security testing and working with security tools. You perform security code reviews and suggest improvements to development teams.
You will work closely with the customer success development teams who customise and extend the Backbase product for our clients. You thrive working with colleagues from multiple cultures. You mentor new team members and act as the go-to person for security in your area.
How about you
● You have 3+ years of experience in application security and 2 years working as a developer;
● You hold a Bachelor's degree in Computer Science, Information Security, Cyber Security or equivalent;
● You have professional command of English language, written and spoken;
● Security certifications such as CSSLP, CISSP, GWEB are nice to have;
● You have a deep understanding of application security;
● You have expert understanding of security in the SDLC and SAST/SCA/DAST tools;
● You have a good understanding of security code review (Java, Javascript, Kotlin or Swift);
● You have a good understanding of frontend, backend and mobile security domains and you’re an expert in one of them;
● You have a good understanding of pen testing web applications or mobile applications;
● You are experienced on security verification of web applications or mobile apps using OWASP ASVS/M-ASVS and testing guides;
● You have a deep understanding of DevOps and Agile product development;
● You have a good understanding of relevant regulations such as GDPR and PCI-DSS;
● You have a good understanding of cloud-native technologies such as Kubernetes.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Application security CISSP Cloud Computer Science DAST DevOps GDPR Java JavaScript Kotlin Kubernetes Mobile security OWASP Pentesting SAST SDLC Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs