Codelink logoCodelink logo

Senior Application Security Engineer

CodelinkHanoi, Hanoi, Vietnam
On-site Full-time

Clicking Apply Now takes you to AutoApply where you can tailor your resume and apply.

Experience Level

Senior

Qualifications

RequirementsMinimum of 5 years of experience in security engineering, application security, DevSecOps, or infrastructure security. Profound understanding of application security principles and prevalent vulnerabilities (OWASP Top 10). Experience with cloud platforms (AWS, GCP, or Azure). Familiarity with:Authentication and authorization mechanismsSecure coding methodologiesEncryption and secrets managementNetwork security conceptsExperience with security testing tools, vulnerability scanning, or penetration testing techniques is a valuable asset. Excellent proficiency in English communication, both written and verbal.

About the job

Join our dynamic team at Codelink as a Senior Application Security Engineer, where you will serve as the security advocate for various project teams. Your primary responsibility will be to identify potential security vulnerabilities and enhance system security throughout the entire development lifecycle.

This role involves collaborating closely with developers, DevOps engineers, and project teams to scrutinize system designs, uncover vulnerabilities, and deliver actionable security guidance before and during project launches.

Responsibilities

1. Security Review & Risk Identification

  • Conduct thorough evaluations of project architectures, applications, and infrastructure to pinpoint potential security risks.
  • Adopt a proactive red-team mentality to identify weaknesses prior to production releases.
  • Execute security assessments and vulnerability analyses on applications and cloud environments.

2. Security Design Review & Threat Modeling

  • Engage in security design reviews for new systems and significant architectural modifications.
  • Assist teams in performing threat modeling to uncover possible attack vectors.
  • Offer recommendations aimed at enhancing authentication, access control, data protection, and overall system security.

3. Vulnerability Management & Security Enhancement

  • Identify security vulnerabilities and collaborate with Engineering and DevOps teams to remediate them.
  • Support teams in implementing security enhancements across application code, infrastructure, and configurations.
  • Monitor remediation progress to ensure that security issues are effectively addressed.

4. Secure Development Practices

  • Advocate for secure development practices (Secure SDLC) within engineering teams.
  • Provide guidance on secure coding, secrets management, and secure system architecture.
  • Disseminate security knowledge and practical best practices among developers.

5. Client Security & Compliance Support

  • Ensure project teams adhere to security and compliance standards set by clients.
  • Assist project teams in responding to client security evaluations.
  • Ensure that projects comply with internal security policies and standards such as ISO27001.

About Codelink

Codelink is a forward-thinking technology company dedicated to enhancing security protocols within application development. We value innovation, collaboration, and continuous improvement, making us a great place for skilled professionals to thrive.

Similar jobs

Browse all companies, explore by city & role, or SEO search pages. View directory listings: all jobs, search results, location & role pages.

Tailoring 0 resumes

We'll move completed jobs to Ready to Apply automatically.