Devsec ops specialist Job Vacancy in TANGSPAC CONSULTING PTE LTD Singapore – Updated today
Are you looking for a New Job or Looking for better opportunities?
We got a New Job Opening for
Full Details :
Company Name : TANGSPAC CONSULTING PTE LTD
Location : Singapore
Position :
Job Description : One of our banking clients is looking for a devsec ops candidate
The successful candidate will be part of a start-up team building an innovative platform and app leveraging data, analytics to drive the business. This is a rare opportunity for a self-driven, strong entrepreneurial spirit, start-up minded, solid and passionate product analyst to join and contribute to a venture.
Integration of security into software development during design and development
Contribution to the definition of the different types of security tests to be performed
Supporting the development team in terms of secure development practices
Provide security training to the development team
Automation of security testing process, mostly in our Continuous Integration platform
Design and adapt our Security tools/architecture/process to deal with Cloud platforms
Analysis of IT systems architecture in terms of security and risk/threat modelling
Performing security code reviews and penetration testing during the development sprints
Review and assess the results of external penetration testing, and agree corrective actions
Follow-up on change management regarding the on-going transformation on security practices
Monitor and maintain Microsoft Intune compliance and profile settings. Apply security profiles to device endpoints.
Your Profile
Skills & Experience:
Bachelor’s degree in Computer Science or the equivalent. A master’s degree is a plus
At least 2+ years of hands-on experience doing security code analysis or reviews
At least 2+ years of hands-on experience doing penetration and vulnerabilities tests
At least 2+ years of hands-on experience on securing Cloud infrastructure/applications (AWS / Azure / etc. and the pipeline tools Jenkins/Codepipeline)
Mandatory
Strong critical thinker with problem solving aptitude.
Capacity to provide deep perspective on cyber and security threats
Excellent written and oral communication skills
Knowledge and experience of common security protocols (e.g. TLS, OAuth 2.0, SAML, Open ID Connect, LDAP etc.) and crypto libraries (Open SSL, JWT etc.)
Knowledge and experience of server-side security, authentication and authorizations mechanisms
Knowledge and experience of Web security (OWASP etc.) and JavaScript/SPA security
Knowledge and experience of static code security analysis and security code reviews
Knowledge and experience of vulnerabilities/penetration testing
Knowledge and experience of CI/CD and DevSecOps
Knowledge and experience of security standards/architecture related to Cloud
Plus
Software development experience
Project management skills, or at least good proficiency in managing tasks and priorities
Knowledge and experience of Mobile security on Android and iOS
Experience with hardening of middleware (Tomcat, Apache, NGINX, Mongo DB etc.)
Experience of a secure software life cycle in a software house or large IT department
Contributing to open-source projects or participation in hacker events
Knowledge of encryption and key management
Knowledge of IAM and SIEM solutions
Exposure to internal standard certifications cycles (ISO 27001, CREST,)
This post is listed Under App Development
Disclaimer : Hugeshout works to publish latest job info only and is no where responsible for any errors. Users must Research on their own before joining any company