Send me more jobs like this

Sorry, This job is expired.

Security Engineer, Product Application Security

Keywords / Skills : cloud infrastructure like GCP or AWS , DevOps/Agile environment , Docker and Kubernetes

5 - 10 years
Posted: 2019-01-16

IT/Computers - Software
Software Engineer/ Programmer
Any graduate
Posted On
16th Jan 2019
Job Ref code
Job Description
As a security engineer, you will perform threat modeling, code reviews, and security testing to minimize risks and ensure compliance. You will also collaborate with company engineers from a variety of teams to architect and deliver projects securely. If necessary, you are even allowed to send a pull request to fix the bug as an example for developers. In addition, in this role, you will have an opportunity to improve Continuous Integration process for security, build automated test suites, integrate static analysis testing, creating tools to automate security tasks.

Job Description

Review designs to define necessary security requirements based on threat models and attack trees. 

Review proposed architecture, such as infrastructure or information flows, and proposes a set of security controls in order to minimize risk.

Review source code to find security bugs and coding errors. 

Conduct vulnerability assessments and penetration testing on Mercari’s Web, API, iOS and Android Applications. 

Automate security checks and tests so that they can be easily and transparently plugged into the current CI/CD pipelines.

Develop technical solutions to help mitigate security vulnerabilities. 

Maintain technical & security standards for web application and mobile application technologies. 

Educate developers on secure coding practices with workshops, talks, and lessons. 

Evaluate and investigate suspected security events/incidents and perform remediation in accordance with Incident Response plan/procedures. 

Collaborate with information security officers, legal team, and internal auditors on technical security matters.

Minimum Requirements

Bachelor's degree or equivalent practical experience.

Have strong programming skills with one or more programming languages including but not limited to: Go, PHP, Java, Ruby, Python, C/C++, Objective-C, Swift, Kotlin, or JavaScript.

2+ years of experience analyzing the security of systems (penetration testing, Web Application security testing, vulnerability scanning, threat modeling, etc.).

Good understanding of modern web application architecture, HTTP, TCP/IP, and standard network and system security technologies.

Familiar with software development tools, such as version control system, integrated development environment (IDE), and CI/CD tools.

Strong teamwork skills in a diverse environment

Effective interpersonal and communication skills

Additional Qualifications

Foundation in, and in-depth technical knowledge of, security engineering, computer and network security, operating system security, mobile security, authentication, security protocols and applied cryptography.

Have strong experience in securing PHP, Go, JavaScript, iOS, and Android applications.

Good understanding of development methodologies such as Object-Oriented Programming,Domain Driven Design, and Test Driven Design.

Self-motivated and results-oriented.

Good understanding of microservices architecture.

Knowledge of container and orchestration technology like Docker and Kubernetes

Experience working on cloud infrastructure like GCP or AWS

Experience working in a DevOps/Agile environment

Enjoy programming and automation.

Enjoy working across engineering teams to help architect and deliver projects security

About Company

the Business of TRAINING OF LANGUAGE,CULTURE AND PLACEMENTS OF MAN POWER IN JAPAN & OTHER COUNTRIES, IMPORTS & EXPORTS , and other related business in any Country as deemed fit, under the name and style of "STAR 5 SOLUTIONS"
Walkin for you