Enable job alerts via email!
Application Security Engineer (Pentester)
Crypto.com
Singapore
On-site
SGD 70,000 - 100,000
Full time
2 days ago
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Start fresh or import an existing resume
Job summary
A leading company in the cryptocurrency field is seeking a security expert focused on vulnerability discovery and incident response. This role requires expertise in penetration testing, experience with various tools like BurpSuite, and a strong foundational knowledge of security principles. The successful candidate will be engaged in proactive security measures and work collaboratively within an agile environment.
Qualifications
- Minimum four years of experience in Web API testing and proficiency in using BurpSuite.
- Experience with Mobile App testing, jailbreaking/rooting, API hooking, reverse engineering.
Responsibilities
- Discover security vulnerabilities through design review and penetration testing.
- Provide security training and conduct agile scrum meetings.
- Support application-level security monitoring and incident response.
Skills
Vulnerability Discovery
Security Training
Incident Response
Education
OSCP or equivalent (CREST)
Tools
BurpSuite
Job description
Responsibilities
- Discover security vulnerabilities through design review, source code review and penetration testing, either manually or by using automated tools, and follow up on the remediation process
- Participant in relevant agile scrum meetings and provide professional recommendations on the design of security controls, libraries, and/or protocols
- Conduct security-related training sessions
- Implement various security control verification and risk detection through automated scripts
- Provide support on application-level security monitoring, intrusion detection, and incident response
- OSCP (or equivalent, such as CREST) is a MUST.
- A deep understanding of OWASP Top 10 and the ability to detect and address logic flaws are highly desirable.
- Minimum four years of experience in Web API testing and proficiency in using BurpSuite is preferred.
- Experience with Mobile App testing, comprehension of jailbreaking/rooting a device, API hooking, reverse engineering, and de-obfuscation is highly beneficial
- Fluency in spoken and written English is essential, and proficiency in Mandarin would be advantageous.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
Follow us
