Roles & Responsibilities:
- The ideal candidate will be a self-starter and can manage multiple projects from the ground up with minimal oversight.
- It will also require experience with Application Development, Penetration Testing, and a good understanding of Cyber Security Standards.
- The job will involve evaluating software attack surfaces, cyber threat modeling, and software code analysis for secure coding.
- Developing quantitative and qualitative risk metrics.
- Developing and validating information security standards on mobile applications, windows thick clients, web, and APIs. Manual and automated penetration testing.
- Vulnerability Assessment. Reviewing and proposing changes to software architecture.
- Building governance around software life cycle management from design through the deprecation phase.
- Handling and responding to security incidents.
- May be required to perform other duties as assigned.
Requirement:
- Application development experience in major languages like Java or .net.
- DevSecOps and CI/CD experience.
- Scripting and querying skills to investigate and analyze data in various formats- raw logs, database, SIEM / Splunk, etc.
- Understand NIST, OWASP, or similar security frameworks.
- Certifications in Ethical Hacking and Pen testing are considered a plus.
- Preferred Bachelor's degree or equivalent in Computer Science or related discipline.
- Proficiency in English comprehension.
- Strong communication skills are required.
- Preferably with a minimum of 3-6 years of work experience especially in application support, cyber security, or regulatory compliance.
- Preferably have Analytical Skills; Planning & Organizing Skills; Project Management Skills; Interpersonal Skills; Accuracy & Attention to Detail.
- Preferably have practical experience in implementing LEAN, AGILE, and Design Thinking.
- Strong troubleshooting skills are a must.
