Mid/Sr Application Security Engineer Aws, Devsecops

Since its first launch, Katalon has experienced tremendous growth, serving more than 30,000 teams around the globe, many of which are in the Fortune Global 500, such as PwC, KPMG, Abbott, etc. Katalon is recognized as a top automation tool by prestigious review sites, such as G2, Gartner, Capterra, and IT Central Station.
Founded in 2016, Katalon is the leading provider of a modern, comprehensive quality management platform. Katalon Platform enables quality assurance, DevOps, and software teams of any size to deliver world- class customer experiences faster, easier, and more efficiently.
ABOUT POSITION
We are looking for a Senior Application Security Engineer who thrives working with engineering teams to secure their products across the entire software development lifecycle.
Key Responsibilities:

Support the Vulnerability Disclosure Program;
Participate in and support application security reviews and threat modelling, including code review and dynamic testing;
Support and consult with the product and DevSecOps teams in application security;
Source code auditing;
Reviewing new features and architectural designs;
Assist in Penetration Testing both internally and externally.
Facilitate and support the preparation of security releases;
Assist in the creation of application security training;
Empower engineering teams to build secure software by default;
Assist in the development of automated security testing to validate that secure coding best practices are being used;
Perform application security vulnerability management;

Familiarity with common security libraries, security controls, and common security flaws;
Experience identifying security issues through code review.
Experience with OWASP, static/dynamic analysis, and common security tools;
A basic understanding of network and web- related protocols (such as TCP/IP, UDP, HTTP, HTTPS, protocols);
Experience leading projects from start to finish and mentoring other security practitioners;
Experience in cloud security architecture and infrastructure (AWS is preferred);
Experience coding in at least one scripting language;
Strong ability to work with colleagues to understand our products and then come up with ways to improve existing security infrastructure;
Experience with Penetration testing tools and Devsecops tools such as SonarCloud, Snyk, and Burp Suite;
Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner;
The ability to read and understand code is very important, key languages include: Java, JavaScript, Python, etc.
Relevant information security certificates (CEH, CEPT, OSCP, CMWAPT, GIAC GWEB, CSSLP, CCSP, etc.);
Solid understanding of web application security ( Web Pentest). Penetration Testing experience is a plus;
BSc in Computer Science or related or 3+ years of experience;
An ability to communicate ideas clearly and effectively to engineers who know way more than you about their code;
Able to reason about security decisions;

At Katalon, we bring together self- starting, open- minded, and talented people while actively promoting a transparent and growth- enabling working environment. But don’t just take our word for it. Take a better look below!

Work Facilities & Accommodation:Top- notch equipment, supportive allowances, and A- class facilities.
Total Remuneration:Satisfying your financial goals through competitive compensation and periodic performance bonuses.
Statutory Compliance:Labor compliance with local regulations that ensure employee security.
Diversity, Equity, Engagement, & Inclusion:Becoming part of a global team that celebrates differences, equal opportunity, and meaningful employee recognition.
Well- being & Work- life Balance: Staying healthy through comprehensive health plans and generous paid leaves.
Growth & Rewards:Thriving professionally through employee enablement, a culture of trust, and rewarding performance.

Katalon is proud to be an equal- opportunity employer. We care about our people and celebrate our differences. We want to work with talented, collaborative, and innovative people. We do not discriminate in hiring or any employment decision based on race, color, religion, national origin, age, sex (including pregnancy, childbirth, or related medical conditions), marital status, ancestry, physical or mental disability, genetic information, veteran status, gender identity or expression, sexual orientation, or other characteristics protected by law.

Cập nhật gần nhất lúc: 2024-06-24 00:55:03