Job Details

• min. 6 years of domain experience (technical expertise in at least one domain: software development, network engineering, authentication or security protocols, systems engineering, cryptography)
•  Well-versed in Application Security and infrastructure security
• Able to build entire Application Security Testing leverage on security best practices, common and emerging security threats

 

As AVP, Application Security Testing & Framework, you will report to Information Security Lead and responsible for providing leadership (building of application security testing framework), setting the direction, strategy, deliverables, and operating model for Application Security focused on, Assessments & Testing function, including owning the definition, implementation and ongoing maintenance of service roadmaps to ensure a fit for purpose services, processes and tools are in place to support the application security operational objectives

You will support stakeholders, project managers and architect  (Based in Singapore & China) on Application Security Testing services covering Code Security Reviews (SAST), Mobile Application Security Reviews, Software Composition Analysis, Web Application Scanning (DAST), Developer Security Enablement and Application Penetration Testing, managing and influencing stakeholders in understanding risk exposure and containment measures from application security vulnerabilities the Group could be exposed to.

You will also drive the operation of Application Security tools, planning and execution of scanning and testing, researching and analyzing vulnerabilities, identifying relevant threats, corrective action recommendations, summarizing and reporting results, including developing and advocating the use of automated testing tools and processes, standardized frameworks and standards to enhance the agility and effectiveness of application security services and ensuring Application Security Testing services are agile to cater for testing requirements for 3appDevSecOps and cloud-based environments

 

To qualify, individuals must possess:

 

- min. 6 years of domain experience (technical expertise in at least one domain: software development, network engineering, authentication or security protocols, systems engineering, cryptography)

 

Must have:

-  Well-versed in Application Security and infrastructure security

 

- Familiar with security best practices and have knowledge of common and emerging security threats

- Extensive and deep technical knowledge ranging from front-end UIs through to back-end systems and all points in between

- Strong software design and implementation know-how, strong familiarity with web protocols, a thorough knowledge of Linux/Unix tools and architecture

- Certification such as OSCE, OSCP, CREST, CISSP, etc.

 

Please reach out to Vyon Ng at 69500385 or VyonN@charterhouse.com.sg for a confidential discussion.

Only successful candidates will be notified.