Be responsible for ensuring that computer information systems are protected from hackers.
Be responsible for running security tests on the mobile/web/desktop application
Audit/pentest and exploit security bugs for website and mobile app.
Code/flows review and giving solutions to protect and improve application systems.
Identify potential weaknesses, security bugs in the existing systems, determine the best way to resolve them.
Review any incidents that occur with the security of the system.
Compile their results and write reports concerning their findings.
Researching and learning new technique skills (virus, hacking, bug bounty and so on)
Write security best practice standards and guideline for software developer.
Training security knowledge to engineer and staff to enforce the best security practice and company's security policy.
What you will need
Bachelor's degree or IT related.
At least 2 years of experience as App Security Engineer
Experience of Application (Web and Mobile) Penetration Testing.
Source code review for control flow and security flaws.
Hands on experience with testing frameworks such as the OWASP/PTES
In-depth knowledge of application development processes and at least one programming or scripting language (e.g., Java, Scala, C#, Ruby, Perl, Python, PowerShell)
Passion to learn and explore.
Preferred, if experience in areas of exploit development, vulnerability research and fuzzing, and had some certificates such OSCP, GIAC
