Job Description

Our Client is actively seeking a dedicated Application Security Engineer to enhance the security protocols of our software applications. This position involves using technologies such as React, Node.js, Java with Spring Boot, Python, and AWS. The role requires a proactive stance on maintaining and improving our security infrastructure to defend against both present and future threats.

Primary Responsibilities (include, but are not limited to)

• Security Framework Implementation: Design and implement strong security frameworks for applications built with React, Node.js, Java Spring Boot, and Python.
• Security Audits and Reviews: Perform thorough security audits, code reviews, and vulnerability assessments across multiple development environments.
• AWS Security Management: Oversee and secure AWS services, including API Gateway.
• CI/CD Security Integration: Incorporate security tools into CI/CD pipelines using Jenkins and GitHub Actions to ensure security checks are automated within the development lifecycle.
• White Box Penetration Testing: Execute white box penetration tests following each release to identify and rectify potential security risks.
• Incident Response: Address, investigate, and mitigate security incidents and vulnerabilities within the application framework.
• Security Documentation: Develop and keep up-to-date detailed security documentation outlining standards, procedures, and protocols.
• Developer Guidance: Instruct and support development teams on best security practices and secure coding techniques.

Requirements

• Educational Background: Bachelor’s degree in Computer Science, Information Security, or related field.
• Application Security Experience: Demonstrable experience in application security, especially with React, Node.js, Java Spring Boot, and Python.
• AWS Expertise: Proficiency in managing and securing AWS environments, including API Gateway.
• CI/CD Proficiency: Skilled with CI/CD tools such as Jenkins and GitHub Actions for security integrations.
• Penetration Testing: Experienced in conducting white box penetration tests and security assessments.
• Coding and Security Practices: Solid knowledge of secure coding practices, ethical hacking, and threat modeling.
• Analytical Skills: Excellent analytical, problem-solving, and communication skills.

Preferred Skills:

• Security Certifications: Possession of security-related certifications such as CISSP, CEH, or OSCP is preferred.
• Industry Experience: Experience in regulated industries like financial or healthcare sectors is a plus.
• Network and Cloud Security: In-depth understanding of network and cloud security best practices.
• IaC Tools Knowledge: Experience with Infrastructure-as-Code tools, especially Terraform, to enhance security through automated infrastructure provisioning.

Hours: 40 hours per week, Monday to Friday.

Ready to Apply?

If you're motivated to take on this challenge and contribute to our clients team's success, we'd love to hear from you. Please send your CV and a cover letter outlining your fit for the role. Selected candidates will be contacted for further discussions.

Your privacy is paramount to us. All personal information will be kept confidential and used solely for recruitment purposes, in accordance with legal protections.

Note: Only candidates selected for interviews will be contacted. IC Recruiting Ltd is licensed by the National Agency of Employment (No 2087/22.07.2016) to operate in the recruitment field.

Join an innovative multi-asset global trading platform. Designed by traders for traders, our client offers a comprehensive platform catering to the sophisticated investor. Participants can seamlessly navigate through a diverse range of asset classes, including stocks, CFDs, and cryptocurrencies, subject to the regulatory environment of each market. This platform stands as a testament to serious trading, providing agility and versatility across global financial markets.