Talent.com
This job offer is not available in your country.
Senior Application Security Engineer

Senior Application Security Engineer

DigiCertWorkFromHome, Mpumalanga, South Africa
30+ days ago
Job description

Who we are

We're a leading, global security authority that's disrupting our own category. Our encryption is trusted by the major ecommerce brands, the world's largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to the little things like surgically embedded pacemakers. We help companies put trust - an abstract idea - to work. That's digital trust for the real world.

Job summary

As a Senior Application Security Engineer specializing in application security and DevSecOps within our cybersecurity team, you will play a crucial role in safeguarding our company's web applications by integrating security practices into the Software Development Life Cycle (SDLC). You will be responsible for the proactive identification, assessment, and mitigation of security vulnerabilities, developing and driving the adoption of DevSecOps practices, and ensuring that security is embedded in all phases of software development.

This is a remote position.

What you will do

  • Lead the integration of security measures into the SDLC, ensuring that all aspects of web application development are secure by design.
  • Conduct thorough security assessments and penetration testing for web applications to identify vulnerabilities and security gaps.
  • Play an advisory role with software engineering teams in the architectural design of new applications, emphasizing secure architectural patterns and best practices.
  • Perform and coordinate manual and automated code reviews.
  • Lead threat modeling exercises across engineering teams.
  • Collaborate with software development teams to implement DevSecOps practices, providing guidance on secure coding, automated security testing, and continuous monitoring.
  • Contribute to internal security tooling development or integration.
  • Develop and maintain a secure framework for code deployment, automating security processes where possible to streamline the development workflow.
  • Work cross-functionally with various teams, including IT, engineering, operations, and business units, to communicate security policies and procedures effectively.
  • Establish and maintain strong relationships with stakeholders, presenting complex security concepts in an accessible manner.
  • Stay abreast of the latest security threats, trends, and technologies in web application security and incorporate this knowledge into company practices.
  • Assist in the development and enforcement of security policies and procedures, ensuring compliance with industry standards and regulations.
  • Assist with managing bug bounty program.
  • Develop program documentation to promote operational stability and scalability.
  • Support Leadership in defining and executing the roadmap for DevSecOps maturity and secure SDLC initiatives.
  • Support governance and compliance teams on secure engineering practices for aligning security policies related to SDLC
  • Drive and support security identified remediation efforts.
  • Foster and promote a security-forward culture.
  • Mentor junior team members.
  • Other duties and responsibilities, as assigned.

What you will have

  • Bachelor’s or master’s degree in computer science, cybersecurity, or a related field.
  • Professional security certifications such as CISSP, OSCP, CEH, or equivalent are highly desirable.
  • 5+ years of experience in cybersecurity, with a focus on web application security and secure SDLC.
  • Experience with red team implementation and methodologies.
  • Proven track record of working with DevSecOps tools (such as SAST / DAST / SCA) and methodologies.
  • Strong understanding of security protocols, cryptography, authentication, authorization, and security vulnerabilities.
  • Proficiency with programming / scripting languages such as JavaScript, Python, Java, Bash, PowerShell
  • Excellent communication skills with the ability to engage technical and non-technical stakeholders.
  • Strong analytical and problem-solving abilities, with a meticulous attention to detail.
  • Advanced level of knowledge of Information Security design concepts and principles

    • Nice to have

  • Master's degree in a technical discipline
  • Experience working in highly regulated environments.
  • Advanced level of knowledge of IT frameworks and standards (NIST, OWASP Top Ten, COBIT, ITIL, ISO, PCI-PIN, GDPR, WebTrust, FedRAMP)
  • Certified Information Systems Auditor (CISA)
  • AWS Solutions Architect

    • Benefits

  • Provident Fund
  • Medical Aid + Gap Cover
  • Employee Assistance Program
  • Gym Reimbursement
  • Life Insurance
  • Disability Insurance
  • Sabbatical

    • #LI-GA1

    __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT __PRESENT

    __PRESENT __PRESENT

    #J-18808-Ljbffr

    Create a job alert for this search

    Security Engineer • WorkFromHome, Mpumalanga, South Africa

    Related jobs
    • Promoted
    Competence Lead Cybersecurity

    Competence Lead Cybersecurity

    Itass B.V.WorkFromHome, Mpumalanga, South Africa
    Jij + Leadership + Security Visie = Onze Onited Competence Lead Cybersecurity.Amersfoort, Rotterdam, Zwolle hebben de voorkeur). Onze klanten vertrouwen op ons voor stabiele, schaalbare én veilige I...Show moreLast updated: 13 days ago
    • Promoted
    Network Security Analyst

    Network Security Analyst

    Optimal Growth TechnologiesWorkFromHome, Mpumalanga, South Africa
    Network Security Analyst (Remote South Africa).Were looking for a highly skilled Network Security Analyst to join our forward-thinking, security-driven team. In this role, you'll be the guardian of ...Show moreLast updated: 13 days ago
    • Promoted
    Remote Incident Response Tech Lead

    Remote Incident Response Tech Lead

    FusionTekWorkFromHome, Mpumalanga, South Africa
    Remote
    Managed Security Service Provider (MSSP) with offices in multiple US locations and team members globally.We're a tight-knit team of friendly, intelligent people focused on IT infrastructure managem...Show moreLast updated: 30+ days ago
    • Promoted
    Brand Protection Analyst

    Brand Protection Analyst

    Bustem.comWorkFromHome, Mpumalanga, South Africa
    Enforcement Analyst - Brand Protection.Remote (US Eastern Time Hours).Full-Time | Entry-Level | Operational Role.Bustem is a fast-growing brand protection startup that helps top e-commerce brands d...Show moreLast updated: 2 days ago
    • Promoted
    EC&I Engineer

    EC&I Engineer

    Network RecruitmentNelspruit, South Africa
    The EC&I Engineer will be responsible for the design, development, and maintenance of electrical, control, and instrumentation systems across a range of projects. You will work closely with cros...Show moreLast updated: 21 days ago
    • Promoted
    Technical Security Analyst

    Technical Security Analyst

    NETSTOCKWorkFromHome, Mpumalanga, South Africa
    Current job opportunities are posted here as they become available.Subscribe to our RSS feeds to receive instant updates as new positions become available. Full-Time, Permanent, remote position in S...Show moreLast updated: 30+ days ago
    • Promoted
    Ubuntu Security Engineer

    Ubuntu Security Engineer

    CanonicalWorkFromHome, Mpumalanga, South Africa
    Canonical Cape Town, Western Cape, South Africa.Join or sign in to find your next job.Canonical Cape Town, Western Cape, South Africa. Be among the first 25 applicants.Canonical is a leading provide...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Security Engineer, Security Incident Response Team

    Senior Security Engineer, Security Incident Response Team

    GitLabWorkFromHome, Mpumalanga, South Africa
    Senior Security Engineer, Security Incident Response Team.GitLab is an open-core software company that develops an AI-powered DevSecOps Platform used by more than 100,000 organizations.Our mission ...Show moreLast updated: 20 days ago
    • Promoted
    Freelance Cybersecurity Engineer with AI / ML Focus

    Freelance Cybersecurity Engineer with AI / ML Focus

    MindriftWorkFromHome, Mpumalanga, South Africa
    Freelance Cybersecurity Engineer with AI / ML Focus.Location : Johannesburg, Gauteng, South Africa.Remote freelance role. requires laptop, internet connection, and time to dedicate.Generate prompts th...Show moreLast updated: 2 days ago
    • Promoted
    DevOps Nagios Monitoring Specialist - Semi Remote - R600 PH 1152000

    DevOps Nagios Monitoring Specialist - Semi Remote - R600 PH 1152000

    E-Merge IT RecruitmentMbombela, Mpumalanga, South Africa
    Remote
    You will be required to be proactive and be able to provide new ideas for improvement of processes and have deep knowledge of Nagios or similar technologies as a monitoring tool.IT Monitoring Syste...Show moreLast updated: 30+ days ago
    • Promoted
    IT Support and Security Engineer L3

    IT Support and Security Engineer L3

    The Legends AgencyWorkFromHome, Mpumalanga, South Africa
    About the job IT Support and Security Engineer L3.IT Support and Security Engineer L3.Join a High-Growth Australian MSP Remote Role (Darwin Hours). IT Support & Network Engineering | Market Related ...Show moreLast updated: 13 days ago
    • Promoted
    AWS DevOps Engineer - Senior

    AWS DevOps Engineer - Senior

    LumenaltaWorkFromHome, Mpumalanga, South Africa
    Over 20 years of remote experience, all 500+ staff are 100% remote and we still grow vibrant relationships, provide exceptional opportunities for career growth while working with stellar clients on...Show moreLast updated: 30+ days ago
    • Promoted
    Risk and Security Manager

    Risk and Security Manager

    Cash Crusaders Retail (Pty) LtdNelspruit, South Africa
    The purpose of the role is to provide a consistent, comprehensive service to the Franchised and Corporate stores within Cash Crusaders, relating to Operational Risk, Security, Safety and Loss preve...Show moreLast updated: 30+ days ago
    • Promoted
    AUTOMATION SPECIALIST

    AUTOMATION SPECIALIST

    Farm Manager SANelspruit, South Africa
    Relevant trade certificate in a Millwright or Electrician.A minimum of 2 years hands-on experience in maintenance.Experience in Refrigeration will be advantageous. Packhouse experience will be an ad...Show moreLast updated: 10 days ago
    • Promoted
    Technical Application Specialist

    Technical Application Specialist

    MH SolutionsNelspruit, South Africa
    The position requires delivery of technical expertise and application support to Sales Area Managers and Customers, guiding product development, managing projects, and training teams to strengthen ...Show moreLast updated: 16 days ago
    • Promoted
    Cybersecurity Analyst

    Cybersecurity Analyst

    GVW GroupWorkFromHome, Mpumalanga, South Africa
    Join the dynamic and fast-paced world of Aculocity, a global technology consulting company dedicated to revolutionizing business processes through cutting-edge technology solutions.Since our formal...Show moreLast updated: 11 days ago
    • Promoted
    Linux Cryptography and Security Engineer

    Linux Cryptography and Security Engineer

    CanonicalWorkFromHome, Mpumalanga, South Africa
    Linux Cryptography and Security Engineer.Canonical Cape Town, Western Cape, South Africa.Join or sign in to find your next job. Linux Cryptography and Security Engineer.Linux Cryptography and Securi...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Security Operations Engineer

    Senior Security Operations Engineer

    CanonicalWorkFromHome, Mpumalanga, South Africa
    Canonical Cape Town, Western Cape, South Africa.We have opened several senior / staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO.We are looking for a rang...Show moreLast updated: 30+ days ago