Work at the office 100% at Empire Tower (BTS Chong Nonsi)
2C2P is seeking an Application Security Specialist to join its team in Thailand.
If you have the right skills & experience and are looking for a new, rewarding challenge, don&apost wait!
Join us and share our vision of providing the best payment services in Asia.
Job Summary
As an Application Security Engineer at 2c2p, you will play a pivotal role in ensuring the security and integrity of our applications and software products.
You will work closely with cross-functional teams to identify, assess, and mitigate security risks in our applications, enhancing our overall security posture.
Your expertise will be instrumental in safeguarding our company&aposs data, systems, and reputation.
Responsibilities
- Application Security Assessments: Conduct comprehensive security assessments of applications throughout the development lifecycle, identifying vulnerabilities and recommending appropriate remediation measures.
- Secure Code Review: Review application code for security vulnerabilities and assist development teams in addressing and resolving identified issues.
- Security Testing: Perform application security testing, including but not limited to penetration testing, vulnerability scanning, and code analysis.
- Security Architecture: Collaborate with software architects and developers to integrate security best practices into the software development process.
- Security Policies and Procedures: Develop and maintain application security policies, procedures, and guidelines in alignment with industry best practices and regulatory requirements.
- Incident Response: Participate in the incident response process, assisting in the investigation and resolution of security incidents related to applications.
- Security Awareness: Promote security awareness and best practices among development and IT teams through training and knowledge sharing.
- Documentation: Maintain accurate records of security assessments, findings, and remediation activities.
Qualifications
- Bachelor&aposs degree in Computer Science, Information Security, or a related field. Advanced degree (e.g., Master&aposs) is a plus.
- Industry certifications such as CISSP, OSCP, eMAPT and similar are highly desirable.
- Min 3 years of experience in application security, including hands-on experience with security tools and practices.
- Proficiency in .Net and C# programming language and familiarity with secure coding principles.
- Strong knowledge of web application security, including OWASP Top Ten vulnerabilities.
- Experience with security testing tools such as Burp Suite, ZAP, WP Scan and others running on Linux (WSL) based on the nature of target application or similar.
- Excellent communication skills, both written and verbal, with the ability to explain complex security concepts to non-technical stakeholders.
- Strong analytical and problem-solving skills.
- Ability to work independently and collaboratively in a team-oriented environment.
We offer an attractive remuneration package, a fast-paced and exciting working environment, and provide challenging opportunities for life-long learning and career development.
Interested candidates are invited to send your comprehensive resume with current and expected salary package via this job ad. Please note that only shortlisted candidates will be notified.
Please consult our Candidate Privacy Notice to know more about how we collect, use and transfer our candidates information: https://2c2p.com/candidate-privacy-notice.
By submitting your resume and information, you understand, acknowledge, and consent that your personal data will be processed in accordance with our Candidate Privacy Notice. You consent to the collection, use, transfer and disclosure of your personal data as well as to receive email and/or other electronic messaging communication from 2C2P.
