Skip to content

Senior Application Security Engineer - SecOps

Pakistan, Punjab, LahoreEngineering

Job description

Unifonic is a customer engagement platform that enables organizations to delight customers with remarkable omnichannel experiences. By unifying communication channels, messaging apps, and chatbots, Unifonic streamlines conversations at every touchpoint throughout the customer journey.


Senior Application Security Engineer - SecOps

The Security team at Unifonic is seeking a tech-savvy Senior Application Security Engineer to be responsible for developing a secure development lifecycle within the DevOps environment, including hands-on testing experience and good troubleshooting skills. In this role, you will be working to cross and merge the barriers that exist between software development, testing, and operations teams, and being the SME for all Application Security-related issues. The ideal candidate should be a strong communicator with excellent interpersonal skills and have a sound knowledge of cloud platforms such as Amazon Web Services (AWS), Microsoft Azure, and virtual platforms such as Kubernetes. The responsibilities of the Senior Application Security Engineer include but are not limited to:

  • Lead the application security testing across the group.

  • Develop security processes throughout the CI-CD flow and DevOps environment.

  • Troubleshoot and analyze any security incidents on the Cloud Systems and beyond.

  • Introduce security tools for SAST, DAST testing, and secure coding.

  • Perform penetration testing on the applications and remediate any vulnerabilities before the system goes live.

  • Become the Security SME for all application security-related issues.

Job requirements

Must-Have

  • Hands-on 5+ years of experience with cloud platforms such as Amazon Web Services (AWS) and Microsoft Azure.

  • Hands-on 5+ years of experience with application architecture.

  • Hands-on 7-10 years of progressive experience in Information Technology.

  • Experience with at least 3 full project life cycle implementations of DevSecOps.

  • Understanding of process models such as Agile, (Scrum), DevOps, and DevSecOps.

  • A deep understanding of networking, e.g., different Security Tools SAST, DAST, Vulnerability Management tools, and Offensive tools.

  • Strong familiarity with cloud capabilities and products and services for AWS, Privileged Identity Management, VMs, Container Registry, Azure Kubernetes Services (AKS), Data Services, and Key Vault.

  • Experience with multiple programming languages.

Nice To Have

  • Bachelor's degree in Computer Engineering, Software Engineering, or other IT-related field.

  • Fluent in English with excellent writing/editing and verbal communication skills.

  • Will also be highly valued in this recruitment process: CCSP – Certified Cloud Security Professional, AWS Certified Security Specialty/ Cloud practitioner, Google Cloud Certified,  CISSP – Certified Information Systems Security Professional, CISSMP – Certified Information Security Management Professional, CCSK – Certified Cloud Security Knowledge, CEH – Certified Ethical Hacker.

  • Strong sense of ownership, critical thinking, and ability to drive DevOps mindset initiatives across teams for agile release.

  • Analytical thinking and being accountable for the results of made decisions.

  • Understanding of the differences between multiple delivery platforms, such as mobile vs desktop, and optimizing output to match the specific platform.

  • General knowledge in telecommunications (SMSC, VOIP, SMPP, etc).

  • Understanding of accessibility and security compliance.

Pakistan, Punjab, Lahore
Engineering

or

Sign up for the latest Unifonic news, stories, webinars and more.

Business

Products

Solutions

About Us

Career

Resources

Blog

Webinars

Whitepapers

Case Studies

Support

Contact