CyberSecurity Engineering Specialist
Easy apply
Job summary
The CyberSecurity Engineering Specialist (Application & Database) will be responsible for securing the Bank’s on‑premises and cloud‑based applications, services, middleware, APIs, and databases. The role involves designing, implementing, and maintaining robust application and database security controls across the entire software and data lifecycle
Min Qualification:
Degree
Experience Level:
Senior level
Experience Length:
7 years
Job descriptions & requirements
Responsibilities:
- Design, implement, and enforce secure development practices across the SDLC in collaboration with software engineering teams.
- Conduct application security assessments, including SAST, DAST, code reviews, and support remediation of identified vulnerabilities.
- Integrate security controls into CI/CD pipelines and evaluate application security tools such as WAF, RASP, and API‑security platforms.
- Design, review, and secure REST/SOAP APIs including authentication, authorization, encryption, and access‑control models.
- Perform penetration testing support, vulnerability scanning, security test analysis, and oversee remediation activities.
- Assess and improve the security posture of cloud platforms (AWS, Azure), ensuring compliance with industry standards and regulatory requirements.
- Implement and manage database security controls such as access management, encryption, masking, and hardening across SQL and NoSQL systems.
- Conduct database vulnerability assessments, monitor for unauthorized access, and manage DAM tools and logging.
- Lead or support investigations of application and database‑related incidents, including forensic analysis and corrective actions.
- Develop and maintain incident response playbooks for application and database security scenarios.
- Ensure adherence to relevant compliance standards (PCI‑DSS, ISO 27001, NDPR) and maintain supporting policies and procedures.
- Research emerging threats, security technologies, and industry trends, and recommend enhancements to strengthen security posture.
- Provide training and awareness sessions on secure coding and database security best practices for developers and DBAs.
Requirements:
- Bachelor’s degree in computer science or a technology-related field.
- Professional certifications such as CISSP, CSSLP, CEH, CISM, DevSecOps, etc.
- Minimum of 7–10 years’ experience in security engineering with a strong focus on application and database security.
- Hands‑on experience with application security tools (e.g., Burp Suite, OWASP tools) and database security technologies.
- Strong proficiency in programming (Python, Java, C#) and database systems (SQL, NoSQL, Oracle, MS SQL).
- Detailed knowledge and usage of API security, SIEM, antivirus, and IDPS technologies.
- Solid knowledge of secure SDLC, secure coding, and database security principles.
Important safety tips
- Do not make any payment without confirming with the Jobberman Customer Support Team.
- If you think this advert is not genuine, please report it via the Report Job link below.
