Evaluate security vulnerabilities and identify necessary countermeasures to reduce organizational risk through enhancements to the current environment.
Design and implement secure application architecture and development processes.
Work closely with engineering team and product team to implement secure SDLC processes and information security related to product development.
Perform penetration testing focused on critical application data, services, and environments.
4+ years of experience in a web/mobile application security related field.
Experience with cloud security (Azure) and infrastructure security.
Strong knowledge of security frameworks and understanding of industry best practices and standards on secure SDLC process.
Outstanding skill in conveying security technical solutions. Contribute to the formulation of test plans, conduct product testing, provide recommendations, development of secure application architecture and implementation plans for approved solutions.
Ability to adapt to evolving security threats and technologies.
Experience with the implementation of security tools in application development cycle.
Good knowledge of scripting (PowerShell, Bash, etc.)
Having professional security certification is a plus.
