Security and Risk 3

Asurion National Capital Region, Philippines

Join or sign in to find your next job

Join to apply for the Security and Risk 3 role at Asurion

Asurion National Capital Region, Philippines

2 days ago Be among the first 25 applicants

Join to apply for the Security and Risk 3 role at Asurion

TheApplication SecurityEngineer will assist Asurion in developing secure products by providing best-in-classapplication securityservices to the product development organization. This role is responsible for proactively working with our product team to build secure software, validating code level compliance with security standards, assessing applications and services for weaknesses, and working with our development teams to correct security defects.
Essential Duties and Responsibilities:

• Provideapplication/product security guidance to globally distributed product development organization.
• Advise and educate development teams with respect toapplication securitybest practices, securityautomationwithin the SDLC, and the proper use ofapplication securityproducts and services.
• Performapplication security assessmentsof internally developed products and systems, covering architecture, design, and implementation.
• Build threat models for and perform architectural risk assessments of internally developed products and systems.
• Perform automated and manual security code reviews.
• Build and maintain positive and productive working relationships with product development teams and individuals.
• Provide assistance in response to product security incidents whereapplication/ product security expertise is required.
• Participate in blameless postmortems and retrospectives in effort to improve security of products / systems.
• Develop security assessmentscriptsand frameworks.
• Develop applications and/orscriptsas needed to support product security tooling,automation, or other day-to-day work.
• Continuously learn and keep abreast of the latest technical developments in theapplication/product security andcloud securityspaces.
• Perform research into and present on relevant security technology, practices, and threats.
• Work closely with a small team ofapplication securityandpenetration testingstaff, in conjunction with product development, to ensure company products and services withstand foreseen and reasonable attacks.
  

Here’s what you’ll bring to the team:

• Bachelor’s Degree inComputer Science,Software Engineering,Computer Engineering, Electrical Engineering,ElectronicsEngineering, or related field
• 4+ years of experience as a software engineer/developerin a product development organization with a focusapplication security, specifically reviewing code, identifying security defects, and working with developers to make the appropriate corrections.
• 2+ years of hands-on, experience inapplication securityreviewing, assessing, and providing guidance to product development teams.
• Knowledge ofapplication securityvulnerabilities and best practices including OWASP & SANS identified common securitycodingflaws, a general understanding ofthreat modeling, and automated & manual static security code analysis.
• Experience withapplication securityscanning tools includingSAST, SCA, and DAST; Familiarity withGitHubAdvanced Security is a plus.
• Demonstrable knowledge ofcodingin two or more of the following:C#,Java,JavaScript,Python, orSQL.
• Knowledge ofauthentication& authorization techniques, publiccloud security, andcryptography.
• Strong analytical and problem-solving skills.
• Excellentcommunication (oral, written, presentation) skills.
• Penetration testingexperience is desirable.
• GWEB highly desirable;GWAPT,GXPN, OSCP, OSCE,OSWE, OSEE certifications also desirable

Seniority level

• Seniority level Mid-Senior level

Employment type

• Employment type Full-time

Job function

• Job function Other, Information Technology, and Management
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Asurion by 2x

Sign in to set job alerts for “Security Professional” roles.

Quezon City, National Capital Region, Philippines 2 months ago

Manila, National Capital Region, Philippines 2 months ago

Makati, National Capital Region, Philippines 1 month ago

IT Service Manager - PH ( w/ Security Background)

Manila, National Capital Region, Philippines 3 months ago

Sr Security Operations Center Analyst III

Quezon City, National Capital Region, Philippines 1 day ago

Manila, National Capital Region, Philippines 2 days ago

Client Success Representative (Remote, Contract)

Quezon City, National Capital Region, Philippines 1 week ago

Client Success Representative (Remote, Contract)

Caloocan, National Capital Region, Philippines 1 week ago

Client Success Representative (Remote, Contract)

Taguig, National Capital Region, Philippines 1 week ago

Client Success Representative (Remote, Contract)

Pasig, National Capital Region, Philippines 1 week ago

Pasig, National Capital Region, Philippines 1 week ago

Pasig, National Capital Region, Philippines 1 month ago

Quezon City, National Capital Region, Philippines 6 days ago

Quezon City, National Capital Region, Philippines 7 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

---