Application Security Officer

Job Functions:
• Enforce Security by Design on all phases of Software Development Life Cycle.
• Monitor and validate progress on the remediation implemented to address outstanding issues/vulnerabilities,
• Manages internal and external VAPT engagements conducted by external vendor. Ensures closure of audit finding.
• Review result and methodology from vulnerability scan and penetration test conducted by vendor.
• Perform manual or automated tests to validate remediation.
• Perform technical and security reviews on assets impacting operations of applications
• Work with internal teams to resolve security findings on applications.
• Take the corrective action needed to meet the standards required by security policy, procedures, network architectures and software design.
• Promote security awareness program on secure coding and systems development life cycle
• Other tasks or duties that may be assigned in line with the Information Security Program

Job Requirements:
• University Degree in Computer Science or related fields.
• A minimum of three-year experience either a combination of the following field of Information Security, Technology Risk, or IT Audit.
• Knowledge of software designs and how to secure them.
• Knowledgeable in VAPT tools.
• Knowledge in analyzing and securing web and API / application designs.
• Experience in application security / assurance testing.
• Knowledgeable in Top 10 OWASP.
• Ability to audit vulnerabilities and mitigate risks.
• Background in managing and protecting systems against threats.
• Able to develop a clear understanding of clients and customers’ technology needs.
• Understand the linkage between information technology and business value
• Conversant and knowledgeable on the latest technology innovations and possibilities, understanding how key technologies can help address security issues.
• Strong ability to prioritize to achieve target dates.
• Possesses excellent verbal and written communication and presentation skills in English.