Responsibilities & Qualifications:   

Position Responsibilities:

• Spearhead security strategy/implementation throughout the software lifecycle through design, implementation to deployment and support
• Work with stakeholders to develop/implement an application security strategy
• Assist other technology teams in assessing the security of the platform including:

1. Contribute to relevant design and code reviews
2. Review test plans to ensure sufficient security coverage
3. Oversee/design Pen Tests by internal and external teams
4. Security mitigation
5. Provide expertise on cloud application and infra security design patterns
6. Assist with implementation and integration security testing tools & processes (such as SAST/DAST, automation, etc.)

• Provide training and thought leadership for secure software engineering practices
• Be a subject matter expert for security patterns for cloud-based applications and services

Required Competencies:

• 5-10+ years of experience in cybersecurity, software engineering, computer science with a focus on security, or related field
• Bachelor's degree in cybersecurity, software engineering, computer science, or related field
• Certifications in Application Security and Penetration Testing preferred (such as OSCP, OSCE, OSWE, CEH, CISSP, etc.)
• Proficient technical skills in several of the following:

1. Development languages: C/C++, Java, Javascript, Python, etc.
2. Application architectural patterns (micro-services, service-oriented, event-driven, etc.)
3. IP networking, firewalls, network security rules, etc.
4. Cloud computing technologies and delivery patterns (PaaS, IaaS, serverless, etc).
5. Common attacks and vulnerabilities including OWASP Top 10 and SANS CWE 25.
6. Continuous Integration/Testing/Delivery tools and techniques and agile methodologies including TDD/XP/Scrum/Kanban.

• Self-starter with strong business acumen
• Ability to work independently and with application development, quality assurance, DevOps, and peer, security teams,
• Excellent communication skills in English

If this outstanding opportunity sounds like your next career move, please send your resume in Word format to Matthew Chung at resume@pinpointasia.com and put Senior Cloud Application Security Architect (DevSecOps) in the subject header.

Data provided is for recruitment purposes only.

                     _________________________________________________________

Headquartered in Hong Kong, Pinpoint Asia is the go-to Specialist Firm for Technology Recruitment

We are a team of specialist tech recruiters (many of our recruiters come from an IT background) and we serve a wide range of clients, all the way from tech startups (especially FinTech) to some of the top Financial Institutions on Wall Street and several other large scale enterprises in other industries.

Our significant market reputation and status as the leading search firm for many of our clients is a direct result of our strong industry relationships, intimate understanding of the marketplace and proven ability to deliver results. 

Our vision is to help companies hire smarter and help job seekers get closer to their career aspirations.

To see all our open jobs please reach out to us at https://pinpointasia.com/job-search/ (EA License # 62713) 

We are also seeking top-calibre candidates for the following exciting roles:
1) IT Vendor Management Lead - Leading Financial Institution
2) Cloud Digital Platform Delivery Manager - Leading Financial Institution
3) Production Support Manager - Digital InsurTech Platform