Mô tả công việc
Company Overview:
We develop and maintain a suite of strategic internal applications, including thick client applications built in C#, as well as various web applications based on PHP and JavaScript. These systems rely on MySQL databases and include both public-facing platforms and internal tools accessible from external networks. We are committed to optimizing software security and integrating best-in-class cybersecurity practices into our development lifecycle.
Key Responsibilities:
- Conduct security-focused code reviews and identify vulnerabilities, including legacy PHP codebases.
- Implement and manage static and dynamic code analysis tools (e.g., SonarQube, Semgrep, Checkmarx, Fortify, AppSec).
- Perform penetration testing and security analysis using tools like Burp Suite, OWASP ZAP, Acunetix, and similar.
- Integrate security checks into CI/CD pipelines using GitLab CI/CD, Jenkins, or GitHub Actions.
- Automate security validations before production deployments and generate reports to assist developers in remediation and improvement.
- Leverage fast and efficient local AI tools to detect vulnerabilities and suggest practical solutions.
- Educate development teams on secure coding practices and software security principles.
- Stay current with emerging cybersecurity threats and provide actionable recommendations for improvements.
Required Skills:
- Proficiency in common programming languages such as Python, JavaScript, PHP, C#, and SQL.
- Strong hands-on experience in security testing, code auditing, and vulnerability analysis.
- Solid problem-solving and analytical skills.
Desired Profile:
- Deep understanding of OWASP Top 10, SANS Top 25, ISO 27001, and NIST standards.
- Good knowledge of cryptography fundamentals and secret management best practices.
- Experience with vulnerability management and monitoring tools.
- Proven track record in cybersecurity, code review, and DevSecOps environments.
- Ability to effectively communicate complex security concepts to development teams in a clear and concise manner.
Kỹ năng
Ngành nghề
Giới thiệu
freeC is the Smart Recruiting Platform that leverages matching technology to actively connect hundred of thousand of employers and job seekers. The success of freeC is determined by our success in operating as a unified team. If you're interesting, ambitious, and eager to advance your career with us, explore our vacancies as below. We're excited to have you on board our ship to help us grow fast, deliver on our mission of actively connecting employers and job seekers around Vietnam
Lầu 06, Tòa nhà BCONS TOWER II , Số 42/1, Đường Ung Văn Khiêm, Phường 25, Quận Bình Thạnh, TP. HCMXem bản đồ
Trụ sở chính: Lầu 06, Tòa nhà BCONS TOWER II , Số 42/1, Đường Ung Văn Khiêm, Phường 25, Quận Bình Thạnh, TP. HCM
Người đại diện: Kazuki Kunimoto Số ĐKKD: 0315334084 Ngày cấp: 16/10/2018 Nơi cấp: Sở KH&ĐT TP.HCM
