25/05/2023
Amazonas, Antioquia, Arauca, Atlántico, Bolívar, Boyacá, Caldas, Caquetá, Casanare, Cauca, Cesar, Chocó, Córdoba, Cundinamarca, Guainía, Guaviare, Huila, La Guajira, Magdalena, Meta, Nariño, Norte de Santander, Putumayo, Quindío, Risaralda, Santander, Sucre, Tolima, Valle del Cauca, Vaupés, Vichada, San Andrés, Providencia y Santa Catalina, Bogotá
We seek an experienced Application Security Engineer to join our Business Resilience team. The Application Security Engineer will be participating in building the new application solutions, reviewing the architecture and requirements for the existing applications, reviewing the application development process, and performing security testing of the applications or customer organizations. Role: Senior Application Security Engineer Knowledge and Experience: Vocational training in systems engineering or related careers. More four (4) years experience in information security, application security, or other related areas. More seven (7) years of IT-related experience. Knowledge of secure design principles. Up-to-date knowledge of cybersecurity trends and industry. Operational knowledge of modern operating systems and networking. Experience with common cloud services: AWS, GCP, and Azure. Network Security basics and expertise in network Pentesting. Security testing of web applications, web services, mobile apps, and IT infrastructure. Ability to apply modern Application Security methodologies and frameworks. Ability to use at least one modern programming language. Practical experience with offensive security tooling (e.g. BurpSuite, Nmap, SQL Map, etc.). Solid understanding of enterprise technologies and security tooling landscape. Understanding of security best practices and common standards. Fluent English. Personal Attributes. Quick starter and learner Readiness to lead the practice and grow the team, potentially to become the practice lead. Curiosity and enthusiasm to be involved in various types of engagement with numerous customers. Strong interpersonal and oral communication skills (English). Ability to work in an unsupervised mode within scope and time constraints. Certifications: An offensive security certificate (e.g. OCSP) will be a big plus. ISC2 or ISACA certifications will be a plus. Duties: Participate in new solutions design and architecture. Analyze requirements for security-related matters. Review application architecture for adherence to secure application design principles. Do source code analysis. Conduct secure SDLC analysis and improvement. Perform security testing and assessment of the applications and organizations. Conduct general cybersecurity reviews and consultancy. Labor Conditions: Workplace: Colombia - Remote. Type of Contract: Indefinite Term. Salary: To be agreed according to experience. This vacancy is disclosed through ticjob.co