Application Security Specialist
3 weeks ago
We are a fast-growing Governance, Risk & Compliance (GRC) SaaS business, providing world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors through our offices across APAC, USA & Europe.
Our cloud-based SaaS platform – Protecht.ERM is a comprehensive, flexible, and dynamic risk management solution that sets us apart.
The Culture and BenefitsAt Protecht Group, you will be part of a high-performing technology team, working in a positive and friendly culture that values learning and development. We empower our people through leadership, training, knowledge-sharing, and mentorship. Some of the benefits of working with us include:
- A modern TechStack and the opportunity to work in a dynamic team
- A highly flexible culture that allows for work-life balance
- A strong commitment to your learning and development, with fortnightly dedicated L&D afternoons
- Reward & Recognition programs
- A focus on work-life balance, with access to Birthday leave, bonus days, paid parental leave, and long service leave
- Monthly social events
- Competitive remuneration and Annual Performance Bonus
- Novated car leasing
- Wellbeing support
- Generous Employee Referral program
As our Application Security Engineer, you will play a critical role in ensuring that every step of the software development lifecycle follows security best practices in supporting and developing our SaaS product – Protecht.ERM (Enterprise Risk Management). Located in our central Sydney office and reporting to the Head of Cyber Security, you will work in a fun and exciting security team that strives to implement best security practices for development, testing, and agile project delivery.
Key ResponsibilitiesThe successful candidate will have the following responsibilities:
- Review application code for security vulnerabilities and best practices
- Help Protecht developers deliver high-quality and security-hardened code based on OWASP and Protecht secure coding standards
- Assess application vulnerabilities and provide clear paths for developers to mitigate the vulnerabilities
- Create and maintain a single view of application security tasks from different sources, analyze and prioritize the tasks with different dev teams
- Drive and upskill Protecht developers to maintain a security-aware culture
- Own and enforce secure development policies amongst the Protecht development teams
- Create and maintain documentation to support the development of secure software
- Run automated security testing tools (SAST, DAST) to detect vulnerabilities
- Build and integrate automated security tools into CI/CD pipelines for continuous security testing
- Work closely with Protecht developers and platform teams to integrate security throughout the Software Development Life Cycle (SDLC)
- Ensure security requirements are incorporated into the design phase and architecture reviews
- Perform threat modeling with the Protecht development teams to identify and prioritize potential security risks during the design phase
- Monitor the evolving threat landscape and proactively conduct security research to identify common application threats and attack vectors to then develop mitigating solutions and minimize risk
- Collaborate with external stakeholders for the scoping, managing, validating, and remediating of vulnerability assessment and penetration tests
- Participate in audits and reviews to validate the security of applications (ISO27001, SOC2, IRAP)
- Ensure applications comply with relevant security standards and regulations (e.g., OWASP, GDPR)
- Collaborate in an agile environment with cyber security, development, and platform teams
- Contribute to various security projects and assist the Head of Cyber Security in delivering the cyber security roadmap
The ideal candidate will have:
- Passion for application security
- Relevant tertiary qualification such as a degree in computer science or information systems
- 2 or more years proven commercial experience in security, preferably in application security or software engineering role
- Experience with architecture and security reviews, threat modeling applications
- Strong understanding of secure software development fundamentals
- The ability to identify security issues through secure code review
- Commercial experience with Java and/or React development
- Experience with REST APIs
- Experience with common information security frameworks, standards, principles, and processes (OWASP, SANS, NIST, ISO, etc.)
- Understanding and experience with common security libraries, security controls, and common security vulnerabilities
The following attributes are desirable:
- Experience with cloud infrastructure environments (AWS) and containerized environments (Docker, Kubernetes)
- Understanding of identity providers (SAML, SCIM)
- Experience with SAST/DAST tools
- Experience using JIRA and Confluence
- Understanding of risk management
- Exposure to penetration testing for web applications
- Security/Application Security Certifications (CISSP, CEH, OSCP, CREST)
We invite you to apply for this exciting opportunity to join our team. If you think this may be your next challenge and you want to be part of a Great Place to WorkTM – Certified organization, Apply online today
Visit our website https://www.protechtgroup.com/ to find out more about working with us.
-
Application Security Specialist
5 days ago
Sydney, New South Wales, Australia ASIC Full timeAbout ASIC ASIC is a leading innovative company seeking an Application Security Specialist to lead our product security and application security initiatives, ensuring that security is integrated into every aspect of the software development lifecycle and deployment processes. About the Role As an Application Security Specialist, you will be...
-
Application Security Specialist
2 weeks ago
Sydney, New South Wales, Australia Protecht Group Full timeAbout Protecht GroupWe are a fast-growing Governance, Risk & Compliance (GRC) SaaS business, providing world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors through our offices across APAC, USA & Europe.Our cloud-based SaaS platform – Protecht.ERM is a comprehensive,...
-
Application Security Specialist
3 weeks ago
Sydney, New South Wales, Australia Protecht Group Full timeAbout Protecht GroupWe are a fast-growing Governance, Risk & Compliance (GRC) SaaS business, providing world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors.Our cloud-based SaaS platform – Protecht.ERM is a comprehensive, flexible, and dynamic risk management solution.The...
-
Application Security Specialist
3 weeks ago
Sydney, New South Wales, Australia Protecht Group Full timeAbout Protecht GroupWe are a fast-growing Governance, Risk & Compliance (GRC) SaaS business, providing world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors.Our cloud-based SaaS platform – Protecht.ERM is a comprehensive, flexible, and dynamic risk management solution.The...
-
Application Security Specialist
3 weeks ago
Sydney, New South Wales, Australia Protecht Group Full timeAbout Protecht GroupWe are a fast-growing Governance, Risk & Compliance (GRC) SaaS business, providing world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors through our offices across APAC, USA & Europe.Our cloud-based SaaS platform – Protecht.ERM is what makes us really...
-
Cyber Security Specialist
2 weeks ago
Sydney, New South Wales, Australia Salt Recruitment Full timeSalt Recruitment is proud to offer a challenging opportunity for a Cyber Security Specialist - Application Lead to join our team.About UsSalt Recruitment is a leading recruitment agency with a strong focus on technology and innovation.About the RoleWe are seeking a highly skilled Cyber Security Specialist - Application Lead to lead our application security...
-
Application Security Specialist
2 months ago
Sydney, New South Wales, Australia Tal Services Limited Full timeJob Title: Application Security EngineerWe are seeking an experienced Application Security Engineer to join our Cyber Security team at Tal Services Limited. As an Application Security Engineer, you will play a critical role in enhancing our security posture by integrating security practices into our software development lifecycle.Key Responsibilities:Drive...
-
Application Security Specialist
3 weeks ago
Sydney, New South Wales, Australia Protecht Full timeAbout the RoleProtecht is seeking an experienced Application Security Engineer to join our team in Sydney. As a key member of our security team, you will play a critical role in ensuring the security of our SaaS product, Protecht.ERM.Key Responsibilities Review application code for security vulnerabilities and best practices. Help Protecht developers deliver...
-
Application Security Specialist
3 weeks ago
Sydney, New South Wales, Australia Tal Services Limited Full timeJob Title: Application Security EngineerWe are seeking an experienced Application Security Engineer to join our Cyber Security team at Tal Services Limited. As a key member of our team, you will play a critical role in enhancing our security posture by integrating security practices into our software development lifecycle.Key Responsibilities:Drive...
-
Application Security Specialist
3 weeks ago
Sydney, New South Wales, Australia ASIC Full timeAbout ASICASIC is a leading organization in the field of cybersecurity, and we are seeking a highly skilled Application Security Engineer to join our team.The RoleAs an Application Security Engineer, you will play a critical role in ensuring the security of our software development lifecycle and deployment processes. You will work closely with our...
-
Application Security Specialist
4 weeks ago
Sydney, New South Wales, Australia ASIC Full timeAbout ASICASIC is a leading organization in the field of application security, and we're looking for a talented individual to join our team as an Application Security Engineer.The RoleWe're seeking a highly skilled Application Security Engineer to lead our product security and application security initiatives. As part of this role, you'll work closely with...
-
Application Security Specialist
3 weeks ago
Sydney, New South Wales, Australia Tal Services Limited Full timeJob Description:At Tal Services Limited, we are seeking an experienced Application Security Engineer to enhance our security posture by integrating security practices into our software development lifecycle. The ideal candidate will collaborate closely with product development teams to identify, analyse, and mitigate security vulnerabilities in our...
-
Application Security Specialist
4 weeks ago
Sydney, New South Wales, Australia ASIC Full timeAbout the RoleWe are seeking an experienced Application Security Engineer to join our team at ASIC. As a key member of our security team, you will play a critical role in ensuring the security and integrity of our applications and systems.Key ResponsibilitiesCollaborate with development teams to design and implement secure software development...
-
Application Security Specialist
4 weeks ago
Sydney, New South Wales, Australia ASIC Full timeAbout the RoleWe are seeking an experienced Application Security Engineer to join our team at ASIC. As a key member of our security team, you will play a critical role in ensuring the security and integrity of our applications and systems.Key ResponsibilitiesCollaborate with development teams to design and implement secure software development...
-
Application Security Specialist
3 weeks ago
Sydney, New South Wales, Australia Protecht Group Full timeAbout Protecht GroupWe are a fast-growing Governance, Risk & Compliance (GRC) SaaS business providing world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors through our offices across APAC, USA & Europe.Our cloud-based SaaS platform – Protecht.ERM is a comprehensive,...
-
Application Security Specialist
2 weeks ago
Sydney, New South Wales, Australia Protecht Group Full timeAbout Protecht GroupWe are a fast-growing Governance, Risk & Compliance (GRC) SaaS business, providing world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors through our offices across APAC, USA & Europe.Our Unique OfferingOur cloud-based SaaS platform – Protecht.ERM is one...
-
Application Security Specialist
3 days ago
Sydney, New South Wales, Australia Protecht Group Full timeAbout Protecht GroupWe are a fast-growing SaaS company that provides enterprise risk management, compliance, and advisory services to over 350 customers globally. Our cloud-based platform, Protecht.ERM, is a comprehensive risk management solution that supports our mission of empowering businesses to thrive in a rapidly changing world.The Culture and...
-
Cybersecurity Manager
6 days ago
Sydney, New South Wales, Australia Tech-Cyber-Mgmt&Strategy Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Manager - Application Security Specialist to join our team.Key ResponsibilitiesDevelop and deliver an AppSec framework for standardised and measurable secure software development practices.Lead and mentor a small application security team, managing outcomes and stakeholder relationships across the...
-
Aviation Security Specialist
3 weeks ago
Sydney, New South Wales, Australia Mss Security Full timeAbout the Role:You will be responsible for providing passenger and baggage screening services at the airport. This is a key role within our team, and you will be part of an enthusiastic and committed group of professionals who are dedicated to delivering exceptional customer service.Key Responsibilities:Passenger & checked baggage screeningManage screening...
-
Application Security Specialist
4 weeks ago
Sydney, New South Wales, Australia Lanson Partners Full timeAppSec Engineer RoleWe are seeking a skilled Application Security Engineer to enhance our client's security systems. As a financial services organisation, experience in banking or insurance is highly valued. Ideally, you will have at least 3 years of experience in AppSec.As an AppSec Engineer, you will be responsible for integrating security practices into...
