Australia Job Openings
ASIC
Application Security Engineer
Sydney
November 4, 2024
A future with ASIC means that your work will contribute to ASIC's vision for a fair, strong and efficient financial system for all Australians. We value what you will bring. We value those with sharp, analytical minds and are open to challenging the way things are done.
The team
Cyber Security provides a wide range of services including security architecture & design, incident response and cyber assurance for ASIC. We make use of the latest security technology with an increasing focus on automation and analytics to secure and support ASIC on its journey to be a 'best in class regulator supporting the Australian financial markets. As well as tenured Security professionals we welcome applications for The Application Security Engineer from:
The role
About you
About ASIC
ASIC's remit is one of the broadest of regulators across the world. ASIC regulates corporations, markets, financial services and consumer credit and monitors and promotes market integrity and consumer protection in the Australian financial system. Through our enforcement work, we hold to account those who contravene the law, working to achieve strong outcomes that address the greatest consumer and investor harms. Through Moneysmart, we aim to improve the skills and knowledge of Australians and provide information and tools to help them in their decision making. A future with ASIC means that your work will contribute to achieving ASIC's vision for a fair, strong, and efficient financial system for all Australians. ASIC is committed to a providing a diverse and inclusive workplace where the very best talent in Australia chooses to work. Indigenous Australians are encouraged to apply as well as applicants from all backgrounds and with different abilities To work with us, you need to be an Australian citizen, and be prepared to complete an ASIC Suitability and Baseline Assessment which is issued ASIC's Security team. View the position description for more information or click ‘apply' to start your application.
Applications for this role will close at 11:59pm, 22nd November 2024
The team
Cyber Security provides a wide range of services including security architecture & design, incident response and cyber assurance for ASIC. We make use of the latest security technology with an increasing focus on automation and analytics to secure and support ASIC on its journey to be a 'best in class regulator supporting the Australian financial markets. As well as tenured Security professionals we welcome applications for The Application Security Engineer from:
- Software engineers enthusiastic to pursue a career in Cyber Security
- Penetration testers eager to transition their skills into shaping the future of software security.
The role
- Working closely with application development teams to help design secure solutions and integrate security into their software development practices.
- Providing the application development, support, and engineering teams with timely guidance on securing applications, apis, middleware, and the development pipeline
- Educating developers on secure coding approaches and the use of the ASIC application security testing tools suite
- Leading threat modelling and application architecture review sessions to identify, assess, and address security threats at various stages of the design & development process.
- Coordinating and performing application security testing activities, including penetration testing, vulnerability scanning, and application security assessments.
- Collaborating with the development and engineering teams to perform application and cloud infrastructure secure code reviews.
- Assisting the IT teams with the analysis and remediation of security vulnerabilities, design flaws, and security weaknesses in application code, configurations & product architecture
- Assessing and quantifying the vulnerabilities and cyber risks of third-party software and components, and maintaining up-to-date software component registers (sboms)
About you
- A experienced application security professional or a Software Engineer/Penetration Tester eager to transition their skills into a new career
- Securing applications based on modern software architecture patterns such as microservices, single-page application, and serverless
- Secure coding practices to avoid common security vulnerabilities such as those in the owasp top ten: sqli, xss, and csrf
- Security testing frameworks and platforms such as owasp asvs and snyk
- Securing applications in cloud and containerised environments
- Securing ci/cd automation pipelines
- Securing apis
- Developing threat models and facilitating threat modelling workshops with developers and solution architects
- Performing penetration testing and application vulnerability scanning
- Using sast, sca, dast and iast application security testing tools
- Experience in at least one of the following programming and scripting languages - java, .net, python, and javascript
- Experience in one or more of the following web technologies – node.js, reactjs, angularjs, json
About ASIC
ASIC's remit is one of the broadest of regulators across the world. ASIC regulates corporations, markets, financial services and consumer credit and monitors and promotes market integrity and consumer protection in the Australian financial system. Through our enforcement work, we hold to account those who contravene the law, working to achieve strong outcomes that address the greatest consumer and investor harms. Through Moneysmart, we aim to improve the skills and knowledge of Australians and provide information and tools to help them in their decision making. A future with ASIC means that your work will contribute to achieving ASIC's vision for a fair, strong, and efficient financial system for all Australians. ASIC is committed to a providing a diverse and inclusive workplace where the very best talent in Australia chooses to work. Indigenous Australians are encouraged to apply as well as applicants from all backgrounds and with different abilities To work with us, you need to be an Australian citizen, and be prepared to complete an ASIC Suitability and Baseline Assessment which is issued ASIC's Security team. View the position description for more information or click ‘apply' to start your application.
Applications for this role will close at 11:59pm, 22nd November 2024
New Job Alerts
Yankees Restaurant & Bar
Experienced Bartender
Melbourne
FULL TIME & PART TIME
November 10, 2024
View Job DescriptionAustralian Government
APS 6 - Technical Specialist - Technical Professional
Adelaide
PART TIME
November 10, 2024
View Job DescriptionLIA Painting Services
Painting
FULL TIME & PART TIME & CONTRACT
November 10, 2024
View Job DescriptionLooking for similar job?
University of New South Wales
Quantum Applications Scientist
Sydney
FULL TIME
September 2, 2024
View Job DescriptionBlackmores Group
Business Applications Support
Surry Hills
FULL TIME
September 4, 2024
View Job DescriptionBakers Delight
Day shift Apprentice Baker walk in application only
FULL TIME & PART TIME
August 30, 2024
View Job DescriptionNew Job Alerts
Yankees Restaurant & Bar
Experienced Bartender
Melbourne
FULL TIME & PART TIME
November 10, 2024
View Job DescriptionAustralian Government
APS 6 - Technical Specialist - Technical Professional
Adelaide
PART TIME
November 10, 2024
View Job DescriptionLIA Painting Services
Painting
FULL TIME & PART TIME & CONTRACT
November 10, 2024
View Job Description