SPECIALIST PROFESSIONAL RECRUITMENT



Home > Vacancies > Application Security (DepSecOps)
Application Security (DepSecOps)
IT & Telecommunication 2023-06-26 03:29:24
ORB23-010

Application Security (DepSecOps)

POSITION:                  Application Security
LOCATION:                 Bang bo, Samutprakarn
Job Type:                    Contract (12-month renewable)
Salary range:              Depends on experience
Benefit:                       Social Security Fund, Group Insurance etc.

Scope:

1. App. Development Security

  • API Security
  • Dependency Management
  • Secret Management
2. Application CI/CD Security
  • Secure Development Pipeline
  • SAST/DAST
  • SCA
  • VM/Container Security
3. Application Security Audit
  • Source Code
  • VM / Container
4. Application Security Tools
  • SonarQube, Trivy, GitLeaks Management
  • CI/CD Tools Management

 
Responsibilities:

1. Security Daily Operation

SonarQube, GitLeaks, Trivy

• Check the status of security issue (Dev, UAT, Prod?)
• Solve the issue of improper tool functionality (e.g., result does not show correctly)
• Provide consult for solving application security severity issues.
• Update security status such as mitigated, reject.
• Monitor the system status, vulnerabilities.
• Improve policy, procedure, and guideline.

 2. Application Security Improvements

• Research and Design
• POC

 3. Support Application-related incident from AP-SOC

• Communicate Application Application-related incident to Application Team.

 
Qualifications:

1. Strong understanding of DevSecOps Processes

• Hands-on experience with CI/CD Pipeline.
• Knowledge on tools such as Gitlab, Jfrog, Harbor or similar products.

2. Secure Software Development Life Cycle (Application Security)

• Programming skills on both Web and API.
• Knowledge on security tools such as SonarQube, Trivy, GitLeaks or similar products.
• Passion for cybersecurity in DevOps, situationally aware and up to date with best practices.


Nice to have.

• Knowledge in Authentication/Authorization Protocols such as SAML, Oauth 2.0 and OpenID Connect.
• Cloud Infrastructure Knowledge.

 
Please submit a brief covering letter and your updated CV which fully details your qualifications and experience including present and expected salary, availability and a recent photograph to Satanon.n@orenburg.co.th (02 634 1722 Ext.13)

 
We thank you for your interest in applying for the position and please note that only shortlisted candidates will be contacted for further correspondence.

 ***Candidates are not required to pay a fee to use our services***

 Visit our website at: www.orenburg.co.th

Copyright : 2017 orenburg.co.th บริษัทรับทำเว็บไซต์ Design By cw.in.th