Enable job alerts via email!
Application Security Engineer (Pentester)
Crypto.com
Kuala Lumpur
On-site
MYR 90,000 - 120,000
Full time
25 days ago
Job summary
A leading company in the digital finance sector is looking for a Security Engineer. This role involves discovering vulnerabilities, conducting security training, and implementing automated security controls. Candidates must have an OSCP certification and a strong background in web API and mobile app security testing.
Qualifications
- Minimum four years of experience in Web API testing preferred.
- Understanding of OWASP Top 10 required.
- Proficiency in Mandarin advantageous.
Responsibilities
- Discover security vulnerabilities through design and source code reviews.
- Conduct security-related training sessions.
- Implement security control verification through automated scripts.
Skills
Security Vulnerability Detection
Mobile App Testing
Web API Testing
Fluency in English
Education
OSCP (or equivalent)
Tools
BurpSuite
Job description
Responsibilities
- Discover security vulnerabilities through design review, source code review and penetration testing, either manually or by using automated tools, and follow up on the remediation process
- Participant in relevant agile scrum meetings and provide professional recommendations on the design of security controls, libraries, and/or protocols
- Conduct security-related training sessions
- Implement various security control verification and risk detection through automated scripts
- Provide support on application-level security monitoring, intrusion detection, and incident response
- OSCP (or equivalent, such as CREST) is a MUST.
- A deep understanding of OWASP Top 10 and the ability to detect and address logic flaws are highly desirable.
- Minimum four years of experience in Web API testing and proficiency in using BurpSuite is preferred.
- Experience with Mobile App testing, comprehension of jailbreaking/rooting a device, API hooking, reverse engineering, and de-obfuscation is highly beneficial
- Fluency in spoken and written English is essential, and proficiency in Mandarin would be advantageous.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
Follow us
