jobs in Encora Inc.

全职 Lead Application Security Engineer 工作, 薪水, Encora Inc. Federal Territory 公司招聘中 - Ricebowl

Lead Application Security Engineer

Encora Inc.

Undisclosed

KL City, Federal Territory

分享
保存

工作地点

  • Kuala Lumpur Federal Territory Malaysia

职位描述

岗位职责

Key Responsibilities:

  • Threat Modeling: Lead design reviews for new banking features (Payments, Transfers,

KYC). Identify logic flaws before code is written.

  • Pipeline Automation: Architect and maintain the SAST/DAST/SCA tooling in the CI/CD

pipeline (e.g., SonarQube, Snyk, GitLab CI) to block vulnerabilities automatically.

  • Code Review: Perform manual code audits on high-risk components (Authentication,

Ledger logic) in Java, Kotlin, or Swift.

  • Cloud & AI Patterns: Deliver API, container, cloud, and AI security design patterns.

Ensure that developers have "paved roads" (secure templates) for deploying

microservices and AI models.

  • Culture: Act as a mentor to the development team, running secure coding workshops and

championing a "Security Champion" program.

Technical Requirements:

  • 5+ years in Application Security with a background in Software Development.
  • Proficiency in at least one core language: Java (Spring Boot), Node.js, or Go.
  • Deep understanding of OWASP Top 10 and SANS Top 25.
  • Experience with CI/CD integration (Jenkins, GitHub Actions).
  • Bonus: Experience in Fintech or Banking.

重要安全守则

申请工作时,切勿提供您的银行或信用卡详细资料。不要转账或完成无关的在线调查问卷。如果您发现可疑内容,请举报此招聘广告。

了解更多