{bc}
linkedin

Application Security (Onsite as a service) to support QFZ

malomatia
Doha, QAT
Full Time
Mid
Onsite
Today
Penetration TestingBurp SuiteSASTDASTSCAThreat Modeling
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

Penetration TestingBurp SuiteSAST
Smart Apply

Full Job Posting

Job Description

  • We are seeking a skilled Application Security Specialist to join our Cybersecurity Practice.
  • In this role, you will work closely with our application security, development, and QA teams to secure our clients’ applications across their entire lifecycle.
  • You will conduct security testing, perform penetration tests, and assess vulnerabilities across web, mobile, API applications.

Responsibilities

  • Penetration Testing: Conduct penetration tests on web applications, mobile applications, APIs, and thick client applications. Prepare detailed reports with clear risk ratings and actionable remediation recommendations.
  • Security Scanning: Implement, tune, and manage automated security scanning tools (SAST, DAST, SCA) to continuously identify vulnerabilities in code, configurations, and third party dependencies across all application types.
  • Threat Modelling: Perform threat modelling to identify potential security risks and attack surfaces associated with applications early in the design process, and provide guidance on mitigating these risks.
  • Secure Code Review: Review application source code for security vulnerabilities across multiple platforms and languages, and offer practical, developer friendly recommendations for remediation.
  • DevSecOps Integration: Integrate security testing and controls into CI/CD pipelines, enabling continuous and automated security validation as part of the development workflow.
  • Training & Awareness: Develop and deliver secure coding training sessions and workshops to raise application security awareness among development teams and other stakeholders.
  • Tool Evaluation: Assess and recommend tools and technologies to enhance application security testing and monitoring capabilities across various platforms.
  • Documentation: Create and maintain comprehensive documentation related to security assessments, vulnerability management, and application security standards and policies.

Qualifications

  • Education: Bachelor’s / college degree in Computer Science, Information Security, or a related field.
  • Experience: At least 3 years of experience in application security, secure software development, penetration testing, or a closely related field.
  • Certifications: Relevant professional certifications are highly desirable. These may include, but are not limited to: OffSec certifications (e.g., OSWA, OSWE), eLearnSecurity (e.g., eWPT, eWPTX), GIAC / SANS (e.g., SEC542, GWAPT), BCSP or other application security certifications.
  • Technical Skills: Proficiency with security testing tools such as Burp Suite (required), and familiarity with Snyk, HCL AppScan, Fortify, and Postman (preferred). Strong understanding of secure coding practices and hands on experience with at least one programming language. Familiarity with DevSecOp
  • Knowledge: In depth knowledge of application security principles and practices, with strong familiarity with security frameworks and guidelines (e.g., OWASP Top 10, ASVS, MASVS, WSTG, MSTG). Understanding of common vulnerability classes, exploitation techniques, and remediation strategies. Knowledge

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at malomatia