Job Description
The Application Security Lead will be responsible for overseeing and implementing comprehensive security measures across our digital products and development lifecycle. This role plays a critical part in safeguarding our systems and ensuring compliance with industry security standards.
Key Responsibilities
- Conduct security testing including pre-release security assessments, routine security checks, penetration testing, and mobile application security testing
- Systematically evaluate security risks for protected business operations, design risk mitigation solutions, and ensure their implementation
- Participate in building fundamental SDLC capabilities including process improvement, metric systems, and automated requirements review capabilities
- Develop and maintain security policies, standards, and procedures in alignment with business objectives
- Collaborate with development teams to integrate security best practices throughout the software development lifecycle
Job Requirements
- In-depth knowledge of common Web, mobile application, and system security vulnerabilities including their principles, exploitation methods, and mitigation solutions
- Comprehensive understanding of Software Development Life Cycle (SDLC) with relevant work experience; prior responsibility for SDLC-related work is preferred
- Familiarity with industry-leading security standards, security models, security solutions, and security frameworks
- Specialization in specific security domains such as security data analysis, big data development, or account security is advantageous
- Excellent cross-team collaboration skills with strong initiative, communication abilities, and self-motivation
- Bachelor's degree in Computer Science, Information Security, or related field with 5+ years of relevant experience
Benefits
- Paid annual leave
- Team building activities
- Company-sponsored travel opportunities
- Year-end bonus
- Project performance bonuses
- Comprehensive health insurance
- Professional development opportunities
