Application Security Engineer
Pakistan
What You Will Do
- Perform threat modeling and secure design reviews for Bykea’s infrastructure and applications to implement secure-by-default solutions.
- Design and implement security solutions to automate the detection and remediation of infrastructure security issues.
- Build out automated/scalable "shift left" approaches to code security including SAST/DAST within code pipelines
- Perform dynamic application security testing (DAST).
- Perform static analysis (SAST) of the micro-services and Mobile applications codebase.
- Discover, prioritize, and remediate technical risks on features, products, and infrastructure.
- Develop and own best practices for application security, development, and deployment (CI/CD).
- Identify and assess vulnerabilities stemming from third party dependencies.
- Triage and remediate vulnerabilities reported to the security team as well
- Educate and evangelize security engineering throughout the organization
About You
- Hands-on security experience with a passion for everything security related with a proven record of delivering a security impact.
- Proven proficiency in scripting and/or software development (Javascript, Python preferred)
- Experience deploying/integrating with CI/CD and configuring SAST/DAST tooling.
- Infrastructure level experience with AWS, Kubernetes and Terraform/Cloud Formation
- Experience with industry standard threat models and security tooling.
- Deep understanding of web security, TLS/SSL, web authentication and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols).
- Experience with mobile applications, web applications, and micro service architecture and their security issues.
- Proven track record securing highly available and highly scalable systems.
- Familiarity with one or more cloud vendor services and management tools (AWS, GCP).
- Team player who can get along with others both inside and outside the company.
- Certifications like OSCP, AWS Security Specialty are also a plus.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS CI/CD Cloud DAST GCP JavaScript Kubernetes OSCP Python SAST Scripting TCP/IP Terraform TLS Vulnerabilities
Region:
Asia/Pacific
Country:
Pakistan
Job stats:
38
4
0
Categories:
AppSec Jobs
Security Engineering Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Senior Cyber Security Specialist jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs