Application Security Engineer
Colombia
Applications have closed
Media.Monks
We’re Media.Monks – global content, data, and media powerhouse. Our solution is simple and singular: Disrupting the industry, driven by digital.As an Application Security Engineer will be contributing to improve the security within the SDLC by identifying and implementing appropriate security controls such as training the teams in secure development practices, implementing SAST flows and growing security testing capabilities. You’ll be the POC for AppSec for development and operations teams.
Key accountabilities:
- Develop and implement security protocols for our applications and services.
- Write and maintain security tooling and automations.
- Conduct regular security assessments and recommend improvements.
- Collaborate with the development team to ensure the application designs are secure.
- Assist with security incidents and provide post-event reports and analysis.
- Stay up-to-date with the latest security trends and countermeasures.
Minimum Qualifications:
- Bachelor's degree in Computer Science, Information Technology or a related field and 3 years of experience, or 5+ years of experience in application security or product security related roles.
- Strong knowledge of a programming language (Python, Javascript, Go, etc.).
- Experience with writing and maintaining security tooling and automations.
- Deep understanding of application and network security.
- Deep understanding with Threat Modeling methodologies and processes
- Ability to work independently and manage multiple tasks simultaneously.
- Excellent problem-solving skills and attention to detail.
Preferred Qualifications:
- AWS or GCP Architect certification (AWS Certified Solutions Architect, Professional Cloud Architect)
- Familiarity with DevSecOps and agile methodologies.
- Knowledge of cloud security best practices.
- Security certification, such as OSCP, CSSLP, CASE, etc.
- Experience in working with security frameworks like OWASP, SANS, NIST, or CIS.
- Proficiency in secure coding practices and a familiarity with static code analysis tools.
- Knowledge of encryption algorithms, secure communications, and data protection.
- Hands-on experience with implementation of Application Security Architecture and Controls (Web-Application Firewalls, SAST, DAST, SCA, etc.) in hybrid environments.
#LI-MT1
#LI-Hybrid
About Media.Monks:
Media.Monks is the purely digital operating brand of S4Capital plc that connects 8,600+ digital natives across one global team. We are united by a mission to shift industries forward and pave the path towards ambitious outcomes so our clients and our people can realize their full potential for growth. Our unified model combines solutions in media, data, social, platforms, studio, experience, brand and technology services to help our clients continuously reinvent themselves throughout increasingly rapid cycles of disruption. Our efforts to shape culture, build innovative technologies and unlock the future of growth have earned recognition from numerous esteemed panels: we maintain a constant presence on Adweek’s Fastest Growing lists (2019-22), regular recognition at Cannes Lions, inclusion in AdExchanger’s Programmatic Power Players (2020-23), the title of Webby Production Company of the Year (2021-23), a record number of FWAs, and have earned a spot on Newsweek’s Top 100 Global Most Loved Workplaces 2023. Together, these achievements solidify our experience in digital innovation, excellence in craft, and commitment to personal growth.
While we continue to grow our teams, please be mindful of fraudulent job postings and recruiting activities that may use our company name and information. Please be mindful to protect your personal information, especially your national identification number, and bank account information during a recruiting process. While Media.Monks may reach out to potential candidates via LinkedIn, we will always ask applicants to apply through our website (https://media.monks.com/careers) and will never ask for payment or bank account information during the recruitment process.
Disclaimer:- Responsible for resourcing and implementing security controls for your teams processes and systems
- Responsible that all your personnel apply information security in accordance with the established information security policy
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Application security AWS Cloud Code analysis Computer Science DAST DevSecOps Encryption Firewalls GCP JavaScript Network security NIST OSCP OWASP Product security Python SANS SAST SDLC Security assessment
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs