Security and Risk 3

2 weeks ago

Taguig, Philippines Asurion Full time
Overview

Location: Taguig, National Capital Region, Philippines. The Application Security Engineer will assist Asurion in developing secure products by providing best-in-class application security services to the product development organization. This role is responsible for proactively working with our product team to build secure software, validating code-level compliance with security standards, assessing applications and services for weaknesses, and working with our development teams to correct security defects.

Responsibilities
  • Provide application/product security guidance to globally distributed product development organization.
  • Advise and educate development teams with respect to application security best practices, security automation within the SDLC, and the proper use of application security products and services.
  • Perform application security assessments of internally developed products and systems, covering architecture, design, and implementation.
  • Build threat models for and perform architectural risk assessments of internally developed products and systems.
  • Perform automated and manual security code reviews.
  • Build and maintain positive and productive working relationships with product development teams and individuals.
  • Provide assistance in response to product security incidents where application/product security expertise is required.
  • Participate in blameless postmortems and retrospectives in effort to improve security of products/systems.
  • Develop security assessment scripts and frameworks.
  • Develop applications and/or scripts as needed to support product security tooling, automation, or other day-to-day work.
  • Continuously learn and keep abreast of the latest technical developments in the application/product security and cloud security spaces.
  • Perform research into and present on relevant security technology, practices, and threats.
  • Work closely with a small team of application security and penetration testing staff, in conjunction with product development, to ensure company products and services withstand foreseen and reasonable attacks.
Qualifications
  • Bachelor’s Degree in Computer Science, Software Engineering, Computer Engineering, Electrical Engineering, Electronics Engineering, or related field
  • 4+ years of experience as a software engineer/developer in a product development organization with a focus on application security, specifically reviewing code, identifying security defects, and working with developers to make the appropriate corrections.
  • 2+ years of hands-on experience in application security, reviewing, assessing, and providing guidance to product development teams.
  • Knowledge of application security vulnerabilities and best practices including OWASP & SANS identified common security coding flaws, a general understanding of threat modeling, and automated & manual static security code analysis.
  • Experience with application security scanning tools including SAST, SCA, and DAST; Familiarity with GitHub Advanced Security is a plus.
  • Demonstrable knowledge of coding in two or more of the following: C#, Java, JavaScript, Python, or SQL.
  • Knowledge of authentication & authorization techniques, public cloud security, and cryptography.
  • Strong analytical and problem-solving skills.
  • Excellent communication (oral, written, presentation) skills.
  • Penetration testing experience is desirable.
  • GWEB highly desirable; GWAPT, GXPN, OSCP, OSCE, OSWE, OSEE certifications also desirable.
Seniority level
  • Mid-Senior level
Employment type
  • Full-time
Job function
  • Other, Information Technology, and Management
Industries
  • IT Services and IT Consulting
#J-18808-Ljbffr

  • Information Security Risk Officer

    2 weeks ago

    Taguig, Philippines DigiPlus Interactive Corp Full time

    DigiPlus Interactive Corp. pioneered digital entertainment in the Philippines. It introduced leading platforms BingoPlus and ArenaPlus, widely known for their engaging experiences in interactive gaming and sports entertainment. DigiPlus also operates GameZone, with more to come. For more information, visit: INFORMATION SECURITY RISK OFFICER The...

  • IT Security Risk and Compliance Analyst

    3 weeks ago

    Taguig, National Capital Region, Philippines Cushman & Wakefield Full time

    Job TitleIT Security Risk and Compliance AnalystJob DescriptionThe IT Security Risk & Compliance Analyst is responsible for managing daily security operations, supporting cross-regional initiatives, and ensuring compliance with internal and external security standards. The role involves collaboration with various teams, including Legal and Service Lines, and...

  • IT Security Risk and Compliance Analyst

    2 weeks ago

    Taguig, Philippines Cushman & Wakefield Full time

    Job Title IT Security Risk and Compliance Analyst Job Description The IT Security Risk & Compliance Analyst is responsible for managing daily security operations, supporting cross-regional initiatives, and ensuring compliance with internal and external security standards. The role involves collaboration with various teams, including Legal and Service Lines,...

  • IT Security Risk and Compliance Analyst

    2 weeks ago

    Taguig, Philippines ISACA Full time

    Overview Job Title: IT Security Risk & Compliance Analyst Job Description Summary: The IT Security Risk & Compliance Analyst is responsible for managing daily security operations, supporting cross-regional initiatives, and ensuring compliance with internal and external security standards. The role involves collaboration with various teams, including Legal...

  • Security Consulting and Risk Officer

    4 days ago

    Taguig, National Capital Region, Philippines AvantePH Staffing and Consultancy Inc. Full time ₱1,200,000 - ₱2,400,000 per year

    Responsible for securing data, network, and applications in system development or system implementations. Perform threat modeling, business and technical process analysis, application security and architecture reviews to evaluate, identify vulnerabilities and enforce security controls in IT and application systems. Ensures coordination of penetration testing...

  • Security Consulting and Risk Officer

    12 hours ago

    Taguig, National Capital Region, Philippines UPTC Full time $70,000 - $120,000 per year

    Job Qualifications:Bachelor's degree in Computer Science, Information Security, or a related technical fieldAt least 3 years of experience as a Security Consultant or Risk Officer.Solid understanding of regulatory compliance and its application to security and privacy (non-negotiable).Strong knowledge of network and application security risks and mitigation...

  • IT Security Risk Assessment Officer

    1 week ago

    Taguig, Philippines Metrobank Full time

    Metrobank Taguig, National Capital Region, Philippines Here at Metrobank, we don't simply hire employees—we hone future leaders. We provide opportunities that enhance your skills and unlock your talents, helping you evolve into a well-rounded individual. We supply you with all the pieces you need to do your best work, unleashing your full potential to help...

  • Senior IT Security Risk

    2 weeks ago

    Taguig, Philippines ISACA Full time

    Overview Job Title Senior IT Security Risk & Compliance Analyst Job Description Summary The Senior IT Security Risk & Compliance Analyst is responsible for managing daily security operations, supporting cross-regional initiatives, and ensuring compliance with internal and external security standards. The role involves collaboration with various teams,...

  • Senior IT Security Risk

    7 days ago

    Taguig, Philippines Cushman & Wakefield Full time

    Overview Job Title: Senior IT Security Risk & Compliance Analyst Job Description Summary: Job SummaryThe Senior IT Security Risk & Compliance Analyst is responsible for managing daily security operations, supporting cross-regional initiatives, and ensuring compliance with internal and external security standards. The role involves collaboration with...

  • security consulting and risk officer

    4 weeks ago

    Taguig, National Capital Region, Philippines Metrobank Full time

    Press Tab to Move to Skip to Content LinkHere at Metrobank, we don't simply hire employees—we hone future leaders. We provide opportunities that enhance your skills and unlock your talents, helping you evolve into a well-rounded individual. We supply you with all the pieces you need to do your best work, unleashing your full potential to help you secure...