Application Security Engineer - Singapore - Morgan McKinley

Morgan McKinley

Verified Company

Singapore

1 week ago

Posted by:

Wei Jie

beBee Recruiter

Job Title:
Application Security - Principal Engineer

About This Role

As a key member of our team, your responsibilities include:

Develop security training and guidance to internal development teams
Drive the build of automation to constantly detect/ remediate key security gaps/ vulnerabilities across teams and deliverables.
Sound understanding of security tools, assess and integrate tools as needed.
Help drive the overall security organization structure inculcating best practices and hiring for best in class. Build a high performing team.
Collaborate with other nontechnical stakeholders of the business and leaders to apprise them of risks and threats on an ongoing basis.
Ability to discover and patch authentication and authorization flaws, and other webbased security vulnerabilities (OWASP Top 10 and beyond).
Ensure deep monitoring on information systems for security incidents and vulnerabilities, including ongoing reports on incidents, vulnerabilities, and trends to IT or executive management.
Deep understanding of the following, both strategy and controls to help drive across the markets with ongoing governance through tooling/ automation, at scale.

- data protection - strategy and controls. Drive consistent implementation/ adherence.

- cloud security and governance framework, ensuring continuous compliance at scale through tooling/ automation.

Ongoing Detective controls
Incident response
Code quality
Proactively identify and reduce security risks.
Find and remove outdated and vulnerable code and code libraries.
Communication
Handle communications with independent vulnerability researchers and design appropriate mitigation strategies for reported vulnerabilities.
Educate other developers on secure coding best practices.
Ability to professionally handle communications with outside researchers, users, and customers.
Ability to communicate clearly on technical issues.
Performance & Scalability
An understanding of how to write code and build systems that are not only secure but scale to a large number of users and systems
Work closely with the Operational teams and provide L3 engineering support, where needed.

Requirements:

Degree / Master's in computer science, Software Engineering or equivalent
At least 14 Years of handson coding experience and passion with track record of handling various deliveries, of which 5 years of relevant Security Engineering Leadership
Strong experience in detecting, Triaging and handling security issues independently
Strong design and architectural understanding of various highly scalable and highly available products on cloud
Strong understanding of the SDLC Activities which include Analysis, Design, Development, Testing, Deployment and Post-Production Support etc.
Strong people management skills to lead and build a highperforming team
Experience in working with stakeholders driving improvement of security posture with a sense of urgency and ongoing communication.

EA Licence No: 11C5502

Registration No:
R1876903