Job title : Application Security Engineer
Job Location : Western Cape, Cape Town
Deadline : January 03, 2025
Quick Recommended Links
Jobs by Location
Job by industries
What We're Looking For: As an Application Security Engineer in the Application Security team, you will assist software development teams to uphold and implement Cybersecurity standards and principles throughout 2U's software development programs. Support development teams across several different geographic sites by discovering and assessing vulnerabilities within 2U's internal and external applications and systems. As an individual, you will be capable of taking on complex tasks with minimal supervision and act as a vital member of the global cybersecurity team, and be a valuable resource for development teams.
Responsibilities Include, But Are Not Limited To: Technical Work with development teams to strengthen and improve overall security within 2U's applications. Identify vulnerabilities and misconfigurations and recommend remediations where necessary. Contribute to the secure software development lifecycle (SSDLC) and promotion of secure coding practices within engineering teams. Conduct assessments and create reports highlighting risks and vulnerabilities and recommend changes to code, frameworks or methodologies to avoid and minimize impact. Where warranted, provide support and services to portfolio teams across the business to enable security best practices. Identify required security training for developers and internal security team, where necessary.
Research Be active in the cybersecurity and developer communities and stay informed on current threats, attack techniques and strategies. Stay abreast of new technologies/tools and how they may pose a threat or benefit the organization.
Personal Continuous learning and constant self improvement are a must. Open to change and ability to pivot to different priorities and situations. Must be able to work well independently as well as part of a larger team.
Things That Should Be In Your Background: Skilled in information security best practices with regard to application development. Work, both independently and in cross-disciplinary teams. Possesses a high level of personal organization, persistence, communications, and attention to detail. Experienced in technical and narrative writing. High level of assessment and report writing skills. Effective communication skills through email, messaging applications and virtual meetings globally. Skilled in developing strategies to deal with potential threats. Knowledge of various software and systems, how they interact with each other and how they interact with outside entities and customers. Skilled in providing mentorship and guidance with regard to application security. 3+ years experience in web and software development. Experienced in securing applications and applying security best practices. Experienced in OWASP 10 and relevant remediations. Experienced in conducting assessments and communicating the results thereof. Experience with multiple software languages and frameworks(PHP, Ruby, Python, Java, HTML, CSS). Experience with ticket and case management systems. Static code analysis tools. Dynamic code analysis tools. Pentesting tools and methodologies. Forensic analysis tools. Reverse engineering tools. On premise and cloud network architecture
ICT jobs