MBPS
Financial Services
AssociateDevSecOps/ApplicationSecurityEngineer
Neural analysis suggests this role is
optimal for Entry candidates.
“Associate DevSecOps/Application Security Engineer at MBPS. Skills: DevSecOps, Application Security, Vulnerability Management, Secure SDLC. Minimize security risk. Monitor applications”
Industry & Context.
Analytical skills; Vulnerability analysis; Root cause analysis
Work UP Ayala Technohub, Hybrid set-up, Work in any shift
What They're Looking For.
Must Have
Graduate of IT related courses, Development/security experience with web applications, Web services experience, Mobile applications experience, Experience with .NET, Java, Angular, NodeJS, or Python, Understanding of cloud security concepts, Understanding of AWS, Azure, Understanding of web application frameworks, Understanding of HTTP, SSL/TLS, OAuth, Understanding of network security principles, Understanding of firewalls, IDS/IPS, Understanding of secure network protocols, Understanding of cybersecurity legal requirements, Understanding of privacy legal requirements, Understanding of data protection laws, Knowledge of web application security concepts, Knowledge of SQL injection, Knowledge of Cross-Site Scripting (XSS), Knowledge of Cross-Site Request Forgery (CSRF), Experience with DevOps practices, Experience with CI/CD pipelines, Experience with Github, Teamcity, Jenkins, Snyk, Contrast, Kubernetes, Ability to understand vulnerabilities, Ability to communicate business impact, Ability to communicate remediation actions, Excellent analytical skills, Excellent presentation skills, Excellent oral communication skills, Excellent written communication skills, Excellent teamwork skills, Excellent client service skills
Nice to Have
Knowledge of OWASP, Knowledge of CIS controls, Proficiency in SAST tools, Proficiency in RASP tools, Proficiency in IAST tools
What You'll Do.
Minimize security risk
Report on applications
Manage application inventory
Ensure security of applications
Ensure redundancy of applications
Ensure continuity of service
Document applications
Manage application security vulnerabilities
Track vulnerabilities
Collaborate with Agile teams
Collaborate with DevOps teams
Review project documentation
Research information security policies
Reference information security policies
Deliver recommendations to secure systems
Deliver guidance to secure systems
Deliver recommendations to secure processes
Deliver guidance to secure processes
Deliver recommendations to secure applications
Deliver guidance to secure applications
Assist in developing application security components
Identify risks in applications
Identify exposure areas in applications
Ensure application logs are in place
Ensure audit trails are in place
Measure effectiveness of security controls
Research effectiveness of security controls
Develop security patterns
Update security patterns
Perform manual security testing
Perform automated security testing
Define application security requirements
Document application security requirements
Perform code security reviews
Participate in incident handling
Perform application forensics activities
Monitor industry trends
Monitor threat landscape
Recommend necessary controls
Recommend countermeasures
Educate developers on secure coding
Educate developers on security practices
How You'll Work.
Team & Collaboration
Agile teams; DevOps teams
Communication Scope
Presentation; Oral communication; Written communication
Process & Methodology
Agile, DevOps
Full Job Description
_We’re looking for a_** _Associate DevSecOps/Application Security Engineer_** _to join our Global Technology team at MBPS. In this role, you will play a key, dynamic role in_ _Minimizing security risk by monitoring, testing, and reporting on application and Application Programming Interfaces, ensuring security, redundancy, and continuity of service. Supports ongoing management of application security vulnerabilities through a centralized vulnerability tracking system and defect tracking system and works with Agile and DevOps teams to deliver recommendations to secure systems, processes, and software applications._ _Have the skills and experience for the job? Learn more about it below!_ **Position Responsibilities:** * Supports efforts to minimize security risk by monitoring, testing, and reporting on application and Application Programming Interfaces. * Assists with managing inventory of applications, ensuring security, redundancy, continuity of service and thorough documentation. * Supports ongoing management of application security vulnerabilities through a centralized vulnerability tracking system and defect tracking system. * Collaborates with Agile and DevOps teams, reviewing project documentation, researching, and referencing information security policies, delivering recommendations and guidance in the pursuit of securing systems, processes, and software applications. * Assists in the development of application security components throughout all stages of the Software Development Life Cycle (SDLC). * Identifies risks and areas of exposure in applications developed by/for the organization and ensures application logs and audit trails are in place. * Measures and researches the effectiveness of security controls in complex codebases and develops and updates security patterns aligned with security requirements. * Performs manual and automated security testing of the organization’s applications and APIs and assists in defining and documenting their application sec
Applying for this Associate DevSecOps/Application Security Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about MBPS?
Real rants from real employees. Read before you apply.