Application Security Engineer

Our Client is actively seeking a dedicated Application Security Engineer to enhance the security protocols of our software applications. This position involves using technologies such as React Java with Spring Boot Python and AWS. The role requires a proactive stance on maintaining and improving our security infrastructure to defend against both present and future threats.

Primary Responsibilities (include but are not limited to)

• Security Framework Implementation: Design and implement strong security frameworks for applications built with React Java Spring Boot and Python.
• Security Audits and Reviews: Perform thorough security audits code reviews and vulnerability assessments across multiple development environments.
• AWS Security Management: Oversee and secure AWS services including API Gateway.
• CI/CD Security Integration: Incorporate security tools into CI/CD pipelines using Jenkins and GitHub Actions to ensure security checks are automated within the development lifecycle.
• White Box Penetration Testing: Execute white box penetration tests following each release to identify and rectify potential security risks.
• Incident Response: Address investigate and mitigate security incidents and vulnerabilities within the application framework.
• Security Documentation: Develop and keep up-to-date detailed security documentation outlining standards procedures and protocols.
• Developer Guidance: Instruct and support development teams on best security practices and secure coding techniques.

Requirements

• Educational Background: Bachelors degree in Computer Science Information Security or related field.
• Application Security Experience: Demonstrable experience in application security especially with React Java Spring Boot and Python.
• AWS Expertise: Proficiency in managing and securing AWS environments including API Gateway.
• CI/CD Proficiency: Skilled with CI/CD tools such as Jenkins and GitHub Actions for security integrations.
• Penetration Testing: Experienced in conducting white box penetration tests and security assessments.
• Coding and Security Practices: Solid knowledge of secure coding practices ethical hacking and threat modeling.
• Analytical Skills: Excellent analytical problem-solving and communication skills.

Preferred Skills:

• Security Certifications: Possession of security-related certifications such as CISSP CEH or OSCP is preferred.
• Industry Experience: Experience in regulated industries like financial or healthcare sectors is a plus.
• Network and Cloud Security: In-depth understanding of network and cloud security best practices.
• IaC Tools Knowledge: Experience with Infrastructure-as-Code tools especially Terraform to enhance security through automated infrastructure provisioning.

Hours: 40 hours per week Monday to Friday.

Ready to Apply

If youre motivated to take on this challenge and contribute to our clients teams success wed love to hear from you. Please send your CV and a cover letter outlining your fit for the role. Selected candidates will be contacted for further discussions.

Your privacy is paramount to us. All personal information will be kept confidential and used solely for recruitment purposes in accordance with legal protections.

Note: Only candidates selected for interviews will be contacted.IC Recruiting Ltd. is licensed by the National Agency of Employment (No 2087/22.07.2016) to operate in the recruitment field.

Company Description

Join an innovative multi-asset global trading platform. Designed by traders for traders our client offers a comprehensive platform catering to the sophisticated investor. Participants can seamlessly navigate through a diverse range of asset classes including stocks CFDs and cryptocurrencies subject to the regulatory environment of each market. This platform stands as a testament to serious trading providing agility and versatility across global financial markets.