Security Developer

• Excellent understanding of native cloud security tools on AWS and Azure (GCP a bonus)
• Experience of third-party applications and tooling that enhance the capabilities delivered by cloud service providers
• Oral and communication skills
• Creativity, problem-solving and analytical thinking
• Attention to detail.
Demonstrated track record of success in helping enterprise customers deploy important workloads to the cloud in a secure and compliant manner including:
o At least 3 year’s implementing security controls across cloud platforms and services
o Experience working in a SecDevOps environment.
o Experience of tools such as VSTS, Terraform, Vault, Jenkins
o Experience of development security frameworks
o Hands-on experience in performing application penetration testing and security functional testing, Design reviews, code reviews, security checks, Planning, Execution and Reporting.
o Perform formal penetration tests on web-based applications, networks and computer systems to understand and document security vulnerabilities
o Probe for vulnerabilities in web applications, fat/thin client applications and standard applications
o Hands-on experience to guide development teams to fix the vulnerability.
o Knowledge of OWASP Top 10 vulnerabilities.
o Experience with vulnerability research, like fuzzing, and exploits writing.
o Good understanding of network protocols, design and operations
o Familiar with GDPR, PCI and other security compliance.
o Pinpoint methods that attackers could use to exploit weaknesses and logic flaws
o Work on improvements for security services, including the continuous enhancement of existing methodology material and supporting assets
o Provide feedback and verification as an organization fixes security issues

• Excellent understanding of native cloud security tools on AWS and Azure (GCP a bonus)
• Experience of third-party applications and tooling that enhance the capabilities delivered by cloud service providers
• Oral and communication skills
• Creativity, problem-solving and analytical thinking
• Attention to detail.
Demonstrated track record of success in helping enterprise customers deploy important workloads to the cloud in a secure and compliant manner including:
o At least 3 year’s implementing security controls across cloud platforms and services
o Experience working in a SecDevOps environment.
o Experience of tools such as VSTS, Terraform, Vault, Jenkins
o Experience of development security frameworks
o Hands-on experience in performing application penetration testing and security functional testing, Design reviews, code reviews, security checks, Planning, Execution and Reporting.
o Perform formal penetration tests on web-based applications, networks and computer systems to understand and document security vulnerabilities
o Probe for vulnerabilities in web applications, fat/thin client applications and standard applications
o Hands-on experience to guide development teams to fix the vulnerability.
o Knowledge of OWASP Top 10 vulnerabilities.
o Experience with vulnerability research, like fuzzing, and exploits writing.
o Good understanding of network protocols, design and operations
o Familiar with GDPR, PCI and other security compliance.
o Pinpoint methods that attackers could use to exploit weaknesses and logic flaws
o Work on improvements for security services, including the continuous enhancement of existing methodology material and supporting assets
o Provide feedback and verification as an organization fixes security issues