Application Security

Job Description:

• Minimum Education S1

Work Experience:

• Minimum 3 years of experience in application security or product security in a complex software environment.

• Experience in conducting product security risk assessments, hazard analysis, and providing vulnerability mitigation guidance.

Technical Skills:

• Product Security: In-depth knowledge of software security principles, including threat modeling, security risk analysis, and product security documentation.
• Risk Analysis: Ability to lead product security risk assessments, including identification and mitigation of potential threats throughout the product lifecycle.
• Security Testing: Familiarity with security testing processes such as penetration testing, code review, and understanding common software vulnerabilities (example: OWASP Top 10).
• Programming Language: Proficiency in one or more programming languages ​​(e.g. Php, Java) to assist in collaboration with development teams and technical design reviews.
• Document Management System: Experience with security-related document management systems, as well as product documentation approval processes.
• Additional Qualifications:
• Relevant security certifications (e.g. CEH, OSCP, ETC) will be a plus.
• Knowledge of software quality policy standards and procedures, and compliance to policies.
• Ability to collaborate with other technical teams
• Ability to be a Subject Matter Expert (SME) in product security, with the ability to manage the security roadmap with the development team.