ITSO - Application Security (Job Level : Consultant)

Responsibilities and Requirements

At least 4 years combined work experience in software development, application security and cloud computing (e.g. AWS)

Familiar with mobile and web application programming interfaces (API) architecture (e.g. REST, SOAP, SSL/TLS)

Experience in threat modelling and able to establish threat profiles for application projects to identify, quantify and remediate application security risks

Strong knowledge of security best practices such as OWASP Top 10, OWASP application security verification standard

Familiar with Agile Development process, CI/CD, DevOps concepts, tools (Gitlab, Github, Ansible etc) and how automated security testing can be incorporated into CI/CI pipelines

Experience on using SAST code scanning tools such as Fortify-on-Demand, Sonarqube, etc

Track and address security vulnerabilities with timely remediation and patching pr...