Job Title & Designation

GICR-66 - Application Security Engineer

Department

ICT – GIC 

Position

Contract / Full Time

Location

 

Reporting To

Khalil Othman

No. of Direct Reports

NA

No. of Indirect Reports

NA

Key Responsibilities:

Job Description:

Collaborate with Application Security Engineer Team to identify security improvements and develop a roadmap to implement the improvements using automation and Application Securitys tools.

Build end to end Application Security pipeline.

Develop and maintain client libraries to integrate DevSecOps tools.

Leverage Jenkins to build scripts that will automate GIT SECRETS, SSL Checker, OWASP Dependency Check, Container Security, Static & Dynamic tool, OSS License Checker.

Participate in compliance audits as security SME.

Work and collaborate effectively with multiple teams.

Create and document standardized processes, procedures and policies.

Keep up to date on Application Security trends and best practices.

Hand-on experience with AWS/Azure pipelines.

Willingness to speak openly, honestly, and professionally in planning meetings.

 

Qualifications, Experience and Competency Requirements:

Education:

Bachelor's Degree in Information Technology or related computer science/technical area

Experience

Essential:

5 years of working in software configuration management with build management, and shell scripts.

Minimum 2+ years experience writing pipeline scripts from SCM

Experience with a programming language such as java & Groovy scripts. 

Specific Skill Requirement 

Jenkins

GIT Hub

Static Analysis tools

DevSecOps

 

Language Requirements

ENGLISH

Travel Requirements

N/A

Time Availability

Overlap with US Time 9 AM to 5 PM 

Reason for Time Availability if N.A. hours required

Need to be able to interface with NA team at least some of the time