Information Security Engineer - Brisbane, Australia - Snaphunt

    Snaphunt
    Snaphunt Brisbane, Australia

    2 weeks ago

    Default job background
    Full time
    Description

    The Offer

    • Flexible working options
    • Work alongside & learn from best in class talent
    • Great work environment

    The Job

    You will be responsible for :

    • Conduct regular security assessments of our applications and identify vulnerabilities, threats, and risks.
    • Perform application penetration testing and code review to identify security weaknesses and provide recommendations for remediation.
    • Assist in the development and implementation of secure coding practices, application lifecycle, and guidelines for our Engineering teams.
    • Collaborate in the design and implementation of security controls in our applications and cloud infrastructure.
    • Contribute to the creation and maintenance of security-related documentation, including threat models, security design documents, and security policies.
    • Stay up to date with the latest security trends, vulnerabilities, and attacks, and provide recommendations for mitigating risks.
    • Assist in incident response efforts and provide technical support during security incidents.

    The Profile

    • Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field with at least 3 years of experience in application security engineering.
    • Proficiency in managing security throughout the application development process and setting up Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) capabilities.
    • Experience with OWASP Top 10, threat modeling, Mitre ATT&CK and risk assessment methodologies.
    • Strong programming and scripting skills (e.g. Python, Java, JavaScript, Bash, PowerShell).
    • Experience with cloud security and DevOps tools and technologies (e.g. AWS, Azure, Kubernetes, Docker).
    • Familiarity with security-related compliance frameworks (e.g ISO27001,.PCI-DSS, HIPAA, SOC 2).
    • Excellent communication and teamwork skills.
    • Solid understanding of Unix/Linux administration and security.
    • Relevant security certifications (e.g.,CSSLP , CEH) are a plus.

    The Employer

    Our client is helping Tier-1 businesses across Telcos, BFSI and Utility sectors to fast track their digital transformation journey to digital maturity using our innovative digital platforms, niche consulting and next generation services.