Application security specialist (Tətbiq təhlükəsizliyi mütəxəssisi)

Ə/h razılaşma ilə 17

Tam iş günü

Bakı, Azərbaycan

17.10.24 - 17.11.24

İş haqqında məlumat

Collaborate with clients’ operations, security, and development teams throughout the software development lifecycle, ensuring security is integrated at every stage;
Integrate and optimize security tools such as SAST, DAST, SCA, and IAST into CI/CD pipelines to automate security testing and enhance the overall security posture of applications;
Conduct threat modeling sessions to identify potential risks and devise strategies to mitigate those threats in client applications;
Perform comprehensive code reviews and security assessments on web and mobile applications, as well as APIs, to identify vulnerabilities and recommend effective remediation strategies;
Ensure secure deployment practices, including configuration management and monitoring in containerized environments.

Experience in application security, or a related field;
Proficiency in Linux environments and experience with shell scripting or Python for automation;
Strong understanding of CI/CD practices and experience with DevSecOps tools and methodologies;
Strong understanding of secure coding practices and common vulnerabilities;
Proficiency with application security testing tools (SAST, DAST, IAST, SCA);
High proficiency in manual techniques for application penetration testing;
Familiarity with cloud security, microservices architecture and container orchestration technologies such as Kubernetes or OpenShift;
Knowledge of programming languages such as Java, C#, Python, or JavaScript, along with well-known frameworks such as Spring, .NET, Django, Flask, and React;
Excellent problem-solving skills and the ability to work independently and collaboratively within teams.