Application Security Engineer
DAZN
- Hyderabad, Telangana
- Permanent
- Full-time
- Work and learn in a team of leading security experts.
- Working closely with developers, acting as a Subject Matter Expert in security threats, vulnerabilities, risks & controls.
- Empower teams following and implementing DAZN's application security principals and outcomes, defining guidelines, and improving controls.
- Support the teams with on-going security risk assessments of new and in-flight projects.
- Proactively test the security posture and guide the remediation work for identified application security risks and vulnerabilities.
- Secure the SDLC and automate security analysis and scanning with SAST, DAST, and other tooling.
- Facilitate threat modelling sessions.
- Facilitating the Security Champions Programme.
- Minimum of two years Hands-on software engineering experience, proficiency with at least one scripting/programming language, coding practices (CI/CD pipelines and github) is a must-have.
- Three to five years prior work experience working in a security capacity for a similar organisation
- Good knowledge of information security principles and practices, especially in the application security domain, OWASP Top 10.
- Experience of application security testing, analysis in modern development environments.
- Ability to develop positive relationships and act as an ambassador for information security.
- Excellent oral and written communication skills, fluent English is a requirement. You are able to speak in front of a bigger audience and senior management.
- Appetite to research, learn and think outside of the box.
- Experience working with a public cloud provider like Oracle, AWS, Azure, or GCP.
- Experience with common authN frameworks and standards like Oauth2/OIDC and JWT/JWS.
- Expertise with OWASP ASVS, Cryptography, TLS, PKI.
- Experience with highly distributed applications and microservices.
- Experience with secrets management.