Job Description

Job Posting End Date:

Worker Type:

Maximum Term/Fixed Term (Fixed Term)

We're seeking a key member who have had a proven track record of running critical shared application platforms in a production cloud environment. The purpose is t o improve the security of NAB applications and DevOps practices through standards, education & awareness with developers, consultation on best practices, development of secure reusable capabilities, and supporting review and remediation of vulnerabilities​

YOUR RESPONSIBILITIES

• Ensure respective policy, standards, processes and controls meet regulator and compliance expectations​

• Support meeting departmental budgets​

• Ensure controls and timely completion of findings and treatment plans​​

• Ensure and drive security outcomes relating to software development and devops practices​

• Ensure and optimize dynamic application security testing tools and API security solutions​

• Ensure tools are configured correctly and operating efficiently to provide maximum protection​

• Utilise a variety of testing methodologies and tools to uncover potential threats and risks while eliminating the false positives

• Enhancing and updating application dynamic testing methodologies, processes and standards documentation

• Document and evangelise secure API design patterns​

• Build and promote code libraries for API security​

• Automate continuous security testing of APIs​

• Consult with development teams to educate and improve awareness of secure standards and practices​

• Support and champion the development of secure and reusable code across development teams to eliminate gaps identified in dynamic and API security testing​

• Develop or use tooling to identify security vulnerabilities within our web application footprint​

• Produce clear and accurate reporting for stakeholders​

• Work with Cyber Engineering & Platforms teams to expand coverage and integrate dynamic and API security testing​

• Work with Detection & Response and other Cyber Security teams to ensure critical exposures are mitigated in a timely manner

• Extend support on remediation of dynamic application testing and API vulnerabilities discovered through scanning and security testing​

• Help manage the organization's vulnerability intake and remediation process​

• Support incident response efforts as required​

• Stay abreast of current and emerging technologies, threats and vulnerabilities, and best practice protection methods​

• Research and analyse application behaviours to improve security and stability​

• Contribute to the evolution of the organization's application security functions and services​

• Other activities as required by management​

YOUR SKILLS AND EXPERIENCE

• 3 years of experience working in a Application Security, consulting or related role

• Delivery / execution of API security and dynamic security testing across NAB​

• Implement security controls across API Gateways.​​

• Stakeholder management​

• Risk management and compliance​​

• Experience in securing APIs and Dynamic/Runtime security scanning

• DevOps operating model and technologies​

• Development skills​

• Vulnerability management

• Working experience in Cloud technologies – AWS and/or Azure

• Hands on with coding: Scripting using Java/Python

• Excellent verbal and written communication skills

• Experience with security tools in SAST (static code testing), SCA (software composition analysis), CSS (container security), DAST (dynamic security testing)

• Tertiary qualified with a Degree in Information Technology or related.

• Having a industry leading cyber security certifications will be a plus

THE BENEFITS AND PERKS

We appreciate and reward our colleagues who do great work every day – from excelling for our customers, to taking ownership of an issue to get it resolved. Here’s how we support our people with a range of exclusive benefits.

1. Generous compensation and benefit package

• Attractive salary

• 20-day paid annual leave and 7-day paid sick leave

• 13th month salary and Annual Performance Bonus

• Premium healthcare for yourself and family members

• Monthly allowance for team activities

• Premium welcome kit and occasional gifts of appreciation

• Extra benefits on your work anniversary

2. Exciting career and development opportunities 

• Large scale products with modern technologies in banking domain

• Clear roadmap for career advancement in both technical and leadership pathways

• Access to digital learning platform such as Udemy

• Consistent and high-quality leadership training through the Distinctive Leadership program (DLP)

• Specialist capabilities and accreditations in key skill areas such as Cloud Engineering, Digital, Data, Security and SREs (Site reliability engineers)

• Sponsored English course with native teachers

• Opportunity for training in Australia

3. Professional and engaging working environment

• Hybrid working model and excellent work-life balance

• State-of-the-art & modern Agile office

• Food and beverages in the office pantry

• Employee Assistance Program to improve your physical and mental health

• Annual team activities and company events

• A solid and talented team behind you – great people who love what they do

A DIVERSE AND INCLUSIVE WORKPLACE WORKS BETTER FOR EVERYONE

We know that our people make us who we are. That's why we have built a culture of respect – where everyone feels valued and appreciated for being their true authentic selves at NAB. With our focus on inclusion and diversity, and in partnership with our Employee Resource Groups, NAB is a place where First Nations colleagues, colleagues of all genders, sexualities and ages, carers and colleagues with disability, and colleagues from all cultures, races and religions have the opportunity to thrive, connect and grow.

We are intent on providing an environment where you can work your way. Ask about our many flexible work options and please let us know if we can provide any adjustments throughout the recruitment process.

CLOUD-FIRST

NAB is undergoing an exciting "Cloud First" technology transformation by taking advantage of the latest tools and techniques used by leading technology and digital companies globally. But it’s not just about the Tech, we are also investing heavily in our people, so if you have an appetite to learn, grow and elevate others around you, this is the place for you!

If this excites you, let's have a chat over a cup of coffee!

It's more than just a career at NAB!

We believe in people with people and dreams, and we want you to achieve your aspirations. More than just a career, NAB Vietnam offers you a flexibility to balance your work - life, the opportunity to grow as professionals, people and a complete set of well-being offerings. If you have an appetite to learn, grow and elevate others around you, this is the place for you.

IT'S MORE THAN MONEY

We naturally also provide a very competitive remuneration package but a career with us is about a lot more than money. We believe in people with ideas and dreams, and we want you to achieve your aspirations. We will work together to deliver exceptional products and outcomes that push the limits of our own aspirations. Our passion for creating value and exceeding our customers' expectations means we are constantly striving to redefine our standards of excellence. You will have our backing to develop and our encouragement to explore, realize and reach your full potential.