On-Site Application Security Engineer – 25Norsoft Pvt Ltd (Subsidiary of Vistas Global WLL) – Qatar

Job Purpose Statement:
We are looking for a Skilled Application Security Engineer for to add a Security focus into every aspect of the software development life cycle. The Application Security Engineer will work together with Development, Testing and Corporate Security Groups to deliver a security compliant, robust and reliable product. The ideal candidate will have a software security and development backgroung and experience with Java ASP. Net, C# with ESAPI. The ideal candidate should have 4 yrs of Web Development experience in .Net Technologies and 4 yrs experience in Application Security.
Principal Accountabilities:
• Hands on Experience in implementing OWASAP, ISO/IEC 27034 Application Security Controls
• Implement End to End Software Development Life Cycle of internal and External developed Applications.
• perform on-going security code and testing review to improve software security
• perform security risk analysis, threat modelling and attack surface reduction review with security code reviews
• review, analyze, and evaluate both internally developed software and Contractor products and procedures to address security requirements.
• Provide security guidelines for the organization to protect critical applications.
Personal profile:
• Experience with encryption, cryptographic standards, communication protocols, security standards and vulnerabilities.
• Working knowledge of web and mobile application development and security vulnerabilities.
• Hands on experience with encryption, cryptographic standards, communication protocols and security standards.
• Strong familiarity with multiple software security paradigms, with certified Secure Software Lifecycle Professional CSSLP, or other information security certifications.
• Detailed technical knowledge of techniques, standards and state-of-the art capabilities for authentication and authorization, applied cryptography, security vulnerabilities and remediation( such as OAuth2, OpenConnect, WS-Security, SAML) and expertise over OWASP ESAPI
• A solid understanding of attack vectors, exploits and hacking tools.
• Experience with various security tools and products (Fortify, AppScan, and Burp Suite).
• Experience with Enterprise Cloud Software environments
• Experience with Enterprise Cloud Software environments
• Knowledge of web related technologies as per OWASP standard
• BS in Computer Science or similar technical field.
• 4+ years proven work experience as a Software Security Engineer.
• 4+ years of Experience in Software Development
Qualification/ Experience/ Certification:
A Bachelor of Science in Computer Science major in Information Systems More than 8 years IT experience concentrating on Software Development and Application Security

Job Details

Posted Date: 2019-02-22
Job Location: Doha, Qatar
Job Role: Information Technology
Company Industry: Information Technology

Preferred Candidate

Career Level: Senior Executive

Apply Now


Share This Post