Since its first launch, Katalon has experienced tremendous growth, serving more than 30,000 teams around the globe, many of which are in the Fortune Global 500, such as PwC, KPMG, Abbott, etc. Katalon is recognized as a top automation tool by prestigious review sites, such as G2, Gartner, Capterra, and IT Central Station.
We are looking for a Mid-Senior Application Security Engineer who thrives working with engineering teams to secure their products across the entire software development lifecycle.
Key Responsibilities:
- Perform application security vulnerability management and collaborate with the engineering team on vulnerability remediation
- Support the Vulnerability Disclosure Program to ensure that vulnerabilities reported by external parties will be handled appropriately
- Collaborate with DevOps to set up and maintain security scanning tools within pipelines
- Facilitate and support the preparation of security releases;
- Assist in the creation of application security training;
- Assist in the development of automated security testing to validate that secure coding best practices are being used;
- Participate in and support application security reviews and threat modeling, including code review and dynamic testing;
- Assist in Penetration Testing both internally and externally
Key Qualifications
- BSc in Computer Science or related or 3+ years of experience;
- Relevant information security certificates (GIAC GWEB, CSSLP, CCSP, etc.);
- Strong ability to work with colleagues to understand our products and then come up with ways to improve existing security infrastructure;
- Ability to read and understand code is very important, key languages include;
- Experience with Penetration testing tools and Devsecops tools such as SonarCloud, Snyk, Burp Suite;
- Solid understanding of web application security ( Web Pentest). Penetration Testing experience is a plus;
- Experience in cloud security architecture and infrastructure (AWS is preferred);
- Experience coding in at least one scripting language;
- Able to reason about security decisions;
- Experience leading projects from start to finish and mentoring other security practitioners;
- An ability to communicate ideas clearly and effectively to engineers who know way more than you about their code;
- Familiarity with common security libraries, security controls, and common security flaws;
- Experience with OWASP, static/dynamic analysis, and common security tools;
- A basic understanding of network and web-related protocols (such as TCP/IP, UDP, HTTP, HTTPS, protocols);
- Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner;
- Experience identifying security issues through code review
- Presentation experience at all levels
- Experience working with compliance, privacy, IT, networking, or related functions
At Katalon, we bring together self-starting, open-minded, and talented people while actively promoting a transparent and growth-enabling working environment. But don't just take our word for it. Take a better look below!
- Total Remuneration: Satisfying your financial goals through competitive compensation and periodic performance bonuses
- Well-being & Work-life Balance: Staying healthy through comprehensive health plans, flexible work arrangements, and generous paid leaves
- Statutory Compliance: Labor compliance with local regulations that ensure employee security
- Work Facilities & Accommodation: Top-notch equipment, supportive allowances, and A-class facilities
- Diversity, Equity, Engagement, & Inclusion: Becoming part of a global team that celebrates differences, equal opportunity, and meaningful employee recognition
- Growth & Rewards: Thriving professionally through employee enablement, a culture of trust, and rewarding performance
Công ty Cổ Phần Công Nghệ An Ninh Không Gian Mạng Việt Nam (VNCS) được thành lập từ năm 2011, là một trong số các công ty thành viên của Hanoi
Telecom Corporation – nhà cung cấp viễn thông và công nghệ thông tin hàng đầu ở Việt Nam và cũng là đơn vị đầu tư, thiết lập, phát triển và quản lý mạng
thông tin di động Vietnamobile cùng đối tác Hutchison Telecom.
VNCS là một trong những công ty được thành lập đầu tiên tại Việt Nam về lĩnh vực công nghệ bảo mật an ninh mạng, VNCS luôn nỗ lực phát triển bền vững song song theo định hướng DSD (Distribution, Service, Development).
VNCS là nhà phân phối ủy quyền các sản phẩm nổi tiếng nước ngoài như: Splunk, BeyondTrust, Acunetix, Radware, Tenable, WatchGuard, ForeScout, Checkmarx, FireEye, Honeywel, Crowdstrike...
VNCS cũng định vị đầu tư để nâng cao công nghệ và phát triển các sản phẩm trong nước của riêng mình kể đến như: VNCS Web Monitoring, Penetration Test
Chính sách bảo hiểm
- Được hưởng các chế độ bảo hiểm : BHYT, BHXH, BHTN
- Hưởng quyền lợi bảo hiểm 24/7
Các hoạt động ngoại khóa
- Du lịch hàng năm
- Team building theo quý
- Các hoạt động vui chơi, giải trí, ca hát thường xuyên
- Thể thao: Đá bóng, bóng chuyền,..
Lịch sử thành lập
- Công ty được thành lập năm 2011
Mission
Các mục tiêu chúng tôi đặt ra cho chương trình bền vững phản ánh trực tiếp tầm nhìn của chúng tôi về việc đảm bảo một tương lai lành mạnh hơn cho ngành,