Job Description
We are seeking a skilled Application Security Engineer to join our team. The successful candidate will play a crucial role in building and maintaining our company's application security system, ensuring the safety and integrity of our products throughout the development lifecycle.
Key Responsibilities
- Participate in the construction of the company's application security system, establish pre-launch security reviews for applications
- Promote code security, application component security, black box and interactive application security testing, code release and other processes
- Responsible for overall business security testing and pre-launch code security audit work
- Research and implement source code static inspection techniques for code vulnerability detection and analysis
- Develop core algorithms or tools for security testing and vulnerability detection
- Evaluate and improve the inspection capabilities of source code static inspection tools
- Intercept and reduce security risks of company products through security tools
- Develop and improve security technical specifications, including security development specifications and security assessment/testing specifications
Job Requirements
- Bachelor's degree or higher in Computer Science, Information Security or related field
- 3+ years of experience in application security or related field
- Strong understanding of secure coding practices and application security principles
- Experience with static code analysis tools and techniques
- Knowledge of common security vulnerabilities and attack vectors
- Ability to develop security tools and automation scripts
- Excellent problem-solving skills and attention to detail
- Strong communication skills to collaborate with development teams
Preferred Qualifications
- Experience with multiple programming languages (Java, Python, C++, etc.)
- Certifications in security (CISSP, CEH, OSCP, etc.)
- Experience with CI/CD pipelines and DevOps practices
- Knowledge of cloud security principles
