Offensive Security Engineer, Senior
Affinidi
·
Posted:
August 29, 2023
·
Onsite
About the position
Affinidi is seeking a highly skilled and experienced Senior Offensive Security Engineer to join their Security team. In this role, the engineer will be responsible for implementing a shift-left security approach, conducting penetration tests on web apps, mobile apps, APIs, microservices, and infrastructure, as well as defining secure development standards and conducting security research. The engineer will also be involved in threat modeling, expert code review, and providing security guidance to engineering and operational teams. This position is based in Singapore and reports to the Security Lead.
Responsibilities
- Support Affinidi in implementing a shift-left security approach
- Conduct penetration tests on web apps, mobile apps, APIs, microservices, and infrastructure
- Define secure development standards
- Engage in security research and threat modeling
- Offer expert code review to identify vulnerabilities
- Establish secure development standards and provide security advisory to development teams
- Conduct security research and penetration testing across various products
- Perform full-stack (Infra & Product security) grey and white box penetration testing
- Create and implement threat modeling
- Utilize code review skills to identify complex vulnerabilities within code
- Offer security guidance to engineering and operational teams
- Develop security tools for threat detection and prevention
- Collaborate with other security teams to share insights and knowledge
- Have experience in infrastructure vulnerability assessments and remediation
- Have expertise in web-based vulnerability assessments (Pentest) and remediation
Requirements
- Highly skilled and experienced Senior Offensive Security Engineer
- Implementing a shift-left security approach
- Conducting web apps, mobile apps, API's, microservices, and infrastructure penetration tests
- Defining secure development standards
- Engaging in security research and threat modeling
- Expert code review to identify vulnerabilities
- Based in Singapore
- Reports to the Security Lead
- Experience in infrastructure vulnerability assessments and remediation
- Expertise in web-based vulnerability assessments (Pentest) and remediation
Benefits
- Hybrid working model
- Flexible working hours
- Unlimited vacation policy
- Competitive compensation package
- Work within international environment
- Learning Budget
- Mobile Allowance
- Home Office Allowance
- Affinidi Cares - Flexible Benefits