Security and Risk 3
2 days ago
The Application Security Engineer will assist Asurion in developing secure products by providing best-in-class application security services to the product development organization. This role is responsible for proactively working with our product team to build secure software, validating code-level compliance with security standards, assessing applications and services for weaknesses, and working with our development teams to correct security defects.
Essential Duties and Responsibilities:
- Provide application/product security guidance to a globally distributed product development organization.
- Advise and educate development teams on application security best practices, security automation within the SDLC, and the proper use of application security products and services.
- Perform application security assessments of internally developed products and systems, covering architecture, design, and implementation.
- Build threat models and perform architectural risk assessments of internally developed products and systems.
- Perform automated and manual security code reviews.
- Build and maintain positive and productive working relationships with product development teams and individuals.
- Provide assistance in response to product security incidents where application/product security expertise is required.
- Participate in blameless postmortems and retrospectives to improve security of products and systems.
- Develop security assessment scripts and frameworks.
- Develop applications and scripts as needed to support product security tooling, automation, or other daily tasks.
- Continuously learn and stay updated on the latest developments in application/product security and cloud security.
- Research and present on relevant security technologies, practices, and threats.
- Work closely with a small team of application security and penetration testing staff, in conjunction with product development, to ensure products and services withstand foreseen and reasonable attacks.
Qualifications:
- Bachelor’s Degree in Computer Science, Software Engineering, Computer Engineering, Electrical Engineering, Electronics Engineering, or a related field.
- 4+ years of experience as a software engineer/developer in a product development organization focusing on application security, including reviewing code, identifying security defects, and collaborating with developers to fix issues.
- 2+ years of hands-on experience in application security review, assessment, and guidance to product development teams.
- Knowledge of application security vulnerabilities and best practices, including OWASP & SANS security coding flaws, threat modeling, and static security code analysis.
- Experience with application security scanning tools such as SAST, SCA, DAST; familiarity with GitHub Advanced Security is a plus.
- Proficiency in coding in two or more of the following: C#, Java, JavaScript, Python, SQL.
- Knowledge of authentication & authorization techniques, public cloud security, and cryptography.
- Strong analytical and problem-solving skills.
- Excellent communication skills (oral, written, presentation).
- Penetration testing experience is desirable.
- Certifications such as GWEB, GWAPT, GXPN, OSCP, OSCE, OSWE, OSEE are also desirable.
-
Security and Risk 3
2 days ago
, Metro Manila, Philippines Asurion Full timeAsurion National Capital Region, Philippines Join or sign in to find your next job Join to apply for the Security and Risk 3 role at Asurion Asurion National Capital Region, Philippines 2 days ago Be among the first 25 applicants Join to apply for the Security and Risk 3 role at Asurion TheApplication SecurityEngineer will assist Asurion in developing...
-
Information Security Risk Consultant
2 days ago
, Metro Manila, Philippines Optum Full time• Perform audits to identify control gaps and implement corrective action plans • Ensure alignment of security policies/standards with IT infrastructure frameworks (e.g., ISO 2700x, NIST, ITIL) • Monitor compliance with corrective action plans, and address non-compliance issues appropriately • Demonstrate understanding of discovery technologies to...
-
Security Trader
2 days ago
, Davao del Sur, Philippines PUBLIC SAFETY SECURITY Full timeTrade Execution Buy and sell securities in financial markets according to client instructions or market strategies. Execute trades efficiently and accurately, ensuring compliance with trading policies and regulations. Monitor and manage positions to minimize risk and optimize profitability. Market Analysis Stay up-to-date on market trends, economic news,...
-
application security engineer
2 weeks ago
Philippines Metropolitan Bank and Trust Company Full time $60,000 - $80,000 per yearPress Tab to Move to Skip to Content LinkHere at Metrobank, we don't simply hire employees—we hone future leaders. We provide opportunities that enhance your skills and unlock your talents, helping you evolve into a well-rounded individual. We supply you with all the pieces you need to do your best work, unleashing your full potential to help you secure...
-
Security Manager
2 days ago
, Davao del Sur, Philippines Security Devices Trading Full timeResponsibilities Develop, implement, and oversee security policies and procedures to safeguard company assets, employees, and visitors. Monitor security operations, manage incident response, and conduct regular risk assessments to identify vulnerabilities. Recruit, train, and supervise security personnel, ensuring adherence to safety standards and protocols....
-
Security Assurance and Assessment Officer
2 weeks ago
Philippines Metropolitan Bank and Trust Company Full time $60,000 - $80,000 per yearSecurity Assurance and Assessment OfficerJob Summary:Develop tactical plans and programs for the establishment and maintenance of the Bank's third party information security risk management framework and ensure alignment with the enterprise risk framework. Perform third party security, system security and information asset based risk assessments. Analyze and...
-
Endpoint Security Engineer
2 weeks ago
Philippines Metropolitan Bank and Trust Company Full time $60,000 - $100,000 per yearResponsible for configuring and maintaining security controls of endpoint security infrastructure; ensures that the security systems documentation is up to date. Identifies and defines endpoint system security standards and requirements. Develops and enforces security plans and standards; ensures that network and system security best practices are executed...
-
Third Party Security Risk Lead
2 days ago
, Metro Manila, Philippines GCash Full timeJoin to apply for the Third Party Security Risk Lead role at GCash 2 weeks ago Be among the first 25 applicants Get AI-powered advice on this job and more exclusive features. Do you want to take the first step in making Filipinos’ lives better every day? Here at GCash, we aim to stay at the forefront of the FinTech industry by creating innovative,...
-
Fraud & Security Risk Assessment Manager
2 days ago
, Metro Manila, Philippines GCash Full timeOverview Join to apply for the Fraud & Security Risk Assessment Manager role at GCash . Responsibilities Develops a complete understanding of a company’s technology and information systems. Identify and communicate current and emerging cybersecurity and fraud threats and risks that are relevant to GCASH. Design cybersecurity and fraud management...
-
System Security Engineer
2 days ago
, Davao del Sur, Philippines MAKABAYAN Security DAVAO Full timeOverview System Security Engineer to join our dynamic team. The ideal candidate will be responsible for ensuring the security and integrity of our systems and infrastructure. This role involves analyzing, designing, and implementing security solutions to protect the organization's networks, systems, and data from potential threats. The System Security...
