The role involves proactively identifying and mitigating application security risks while collaborating with developers to embed security early in the SDLC
Job Summary
The role involves proactively identifying and mitigating application security risks while collaborating with developers to embed security early in the SDLC.
Candidates will perform penetration testing on web, mobile, and cloud-based applications alongside conducting secure code reviews and threat modeling.
IG offers a hybrid working model requiring three days in the office, along with tailored development programs and clear career progression opportunities.
Matching Summary
The role involves proactively identifying and mitigating application security risks while collaborating with developers to embed security early in the SDLC.
Salary
Not specified; Not specified; Not specified
Skills & Requirements
Must-have
3+ years Application Security experience
OSCP certification required
Penetration testing of web and mobile apps
SAST/DAST/SCA tool proficiency
CI/CD pipeline security integration
OWASP Top 10 vulnerability knowledge
Purple team exercise execution
Nice-to-have
Container and Kubernetes security
API security testing experience
Bug bounty program participation
Cloud environment security controls
Secure code review expertise
Key Requirements
Bachelor's degree in Computer Science or related field
OSCP certified with hands-on penetration testing experience
Minimum 3 years professional experience in AppSec or SSDLC