Our client, a leading financial institution is looking an Application Security Associate to join their security team.  Selected candidate will be part driving the application security across security scanning and penetration test. Great exposure, perm position, and growth opportunity.

Responsibilities:
– Part of the Information Security Team to manage application security and review.
– Perform application security planning and secure application code review.
– Review Security Events, provide investigation and remedial action.
– Develop the application coding guideline and application security scanning process.
– Develop penetration test policy and source code review guideline.
– Perform Information Risk Assessment and due diligence on vendor selection process.
– Provide technical support and configuration on security infrastructure and systems.

Qualifications:
– At least 7 years experience in Information Risk and Security management.
– Extensive experience in performing application security assessments.
– Strong understanding of performing penetration tests, vulnerability assessments and infrastructure security reviews for the web and mobile applications. Experience in supporting network infrastructure and performing secure coding reviews.
– Hands-on experience working with HP Fortify and WebInspect.
– Experience with digital security and the recent adoption of mobile and web security measure.
– Experienced in secure application coding and application security scanning
– Excellent Communication skills in English and Cantonese
– Security Certificates in CISSP, CISA, CISM or equivalent is a great plus.