![TAL](https://media.trabajo.org/img/noimg.jpg)
Application Security Engineer
vor 4 Wochen
TAL We offer flexibility by letting you tailor your cover to suit your individual needs. Quick and easy to apply. Get An Online Quote.
View company page
From the millions of Australians we protect, to those that make it happen every day at TAL, people really are what we’re all about.We want to grow with you. Achieve with you. And support you to do your best work. That's why we're focused on developing leadership, promoting diversity, rewarding excellence and retaining great talent.
We're always looking for people who want to go further with us. People who do what’s right, aim high, and work smart.Why not see where we can go?
Job DescriptionTeam Overview:
TheAppSec Team focuses on building secure mobile, web and cloud applications throughout their development lifecycle, from start to finish. AppSec is a proactive approach to security that help prevents threats at the initial stages rather than a reactive approach.
As an Application Security Engineer at TAL, you will be responsible for ensuring the security of our applications by implementing and maintaining robust security measures at TAL. You will work closely with development teams to identify and mitigate security vulnerabilities throughout the software development lifecycle. You will also foster security awareness and DevSecOps culture, providing security training to development teams.
Key Responsibilities:
- Ascertain a holistic understanding of TAL’s systems, development workloads and lifecycles.
- Create and update software application security policies and procedures.
- Work closely with the TAL Cyber team to implement security best practices and standards to protect sensitive data and ensure compliance with regulations.
- Collaborate with development teams to integrate security controls into the software development process.
- Conduct security assessments on applications to identify and remediate vulnerabilities.
- Drive response to security incidents, conducting root cause analysis and implementing corrective actions.
- Analyse application code and recommend solutions to identified security issues.
- Execute planned and ad-hoc security scans of software applications, and interpret results for development teams.
- Maintain documentation related to application security processes and controls.
- Providing application security guidance, coaching, and training to development teams and other stakeholders.
- Ensuring the adoption and implementation of application security tools in the DevSecOps lifecycle.
- Gather, manipulate and report on data from application security tools programmatically.
- Work with vendors to tailor application security tools to fit TAL workloads.
- Stay up-to-date on the latest security threats and trends to proactively address potential risks and educate development teams.
- 5-10 years of experience in application security, with a strong background in secure coding practices and vulnerability management.
- Proficiency in using Static Application Security Testing (SAST) such as Checkmarx, Fortify etc, Software Composition Analysis (SCA) such as Blackduck, Snyk, Sonatype etc, and Dynamic Application Security Testing (DAST) tools.
- Working knowledge of platforms like AWS, Azure, or Google Cloud for deploying and managing applications.
- Familiarity with containerisation and Azure Kubernetes Service (AKS) deployment
- Demonstrated secure software development practices, including threat modelling, secure coding guidelines, and secure architecture design.
- Knowledge of common web application vulnerabilities (e.g., OWASP Top 10) and how to remediate them.
- Understanding of how to implement SAST/SCA/DAST into DevOps CI/CD pipelines.
- Experience with Agile development methodologies, with working knowledge in project management software (e.g. Jira).
- Ability to effectively collaborate with external vendors, multiple internal stakeholders, and senior management across departments.
- A proven track record of working with development teams to remediate application vulnerabilities.
- A high level of analytical, problem-solving, and decision-making skills.
- Excellent written and verbal communication skills, interpersonal and collaborative skills.
- Penetration testing experience preferred but not mandatory.
Certifications such as CISSP, CEH, or CSSLP are preferred but not mandatory
Additional InformationAt TAL we value diversity in all its forms and are committed to fostering an inclusive and equitable culture for all our people. We encourage Aboriginal and Torres Strait Islander people, individuals from all backgrounds, including those with caring responsibilities, people living with disability, and individuals from the CALD and LGBTQI+ communities to apply. Even if you don’t check every box in the criteria above, we encourage you to apply today or get in touch with ushere.
To provide you with the best experience, we can accommodate you at any stage of the recruitment process. Simply inform our Recruitment team at any time.
TAL is recognised by the Workplace Gender Equality Agency as an Employer of Choice. We are proud to be a member of Diversity Council Australia and the Australian Network on Disability. For information on our reconciliation journey, take a look at ourInnovate Reconciliation Action Plan.
We acknowledge the Traditional Custodians of the Land in which our Head Office is based, the land of the Gadigal people of the Eora Nation, and recognise their deep connections to the land, sea, and culture.
We extend this acknowledgment to the many Traditional Lands that we operate across and pay our respects to Elders past, present, and emerging.
Everyone at TAL has a responsibility to do the right thing and is accountable for the way they conduct themselves. Our expectations are that you follow the principles set out in our Code of Conduct when you come to work every day. Risk management is everyone’s responsibility.
If you are already a TAL employee please apply via the SmartRecruiters button in Workday and navigate to the Employee Portal. This is important to ensure that your application is recorded accurately.
Explore more InfoSec / Cybersecurity career opportunitiesFind even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
#J-18808-Ljbffr-
Application Security Engineer
vor 1 Monat
Sydney, Österreich Audinate VollzeitWho we are and what we doAudinate leads the world in networked media with our "Dante" technology which is used extensively in professional audio & video applications, including live events, broadcast, entertainment venues and communication systems.Dante replaces all audio and video connections with a computer network, effortlessly sending video or hundreds...
-
Application Security Engineer
vor 4 Wochen
Sydney, Österreich Audinate VollzeitWho we are and what we doAudinate leads the world in networked media with our "Dante" technology which is used extensively in professional audio & video applications, including live events, broadcast, entertainment venues and communication systems.Dante replaces all audio and video connections with a computer network, effortlessly sending video or hundreds...
-
Application Security Engineer @ TAL
vor 2 Wochen
Sydney, Österreich Cyber Crime VollzeitTAL Tailor your cover to suit your needs. Life, Income, TPD, Critical Illness. Get a Quote for flexible insurance products built by you, for you. View company page From the millions of Australians we protect, to those that make it happen every day at TAL, people really are what we’re all about.We want to grow with you. Achieve with you. And support you...
-
Application Security Engineer
Vor 3 Tagen
Sydney, Österreich Canva VollzeitApplication Security Engineer - Security Champions (12 month Fixed-Term Contract)Join the team redefining how the world experiences design.Thanks for stopping by. We know job hunting can be a little time consuming and you're probably keen to find out what's on offer, so we'll get straight to the point.Where and how you can workOur flagship campus is in...
-
Principal Product Security Engineer
Vor 3 Tagen
Sydney, Österreich Atlassian VollzeitDo you love application and platform security and uplifting programs and capabilities? Are you excited at the prospect of enabling thousands of Atlassian product and platform developers to improve the security of their applications and infrastructure and ultimately improve the security of millions of users that use Atlassian products? We're looking for a...
-
Application Security Engineer
vor 1 Monat
Sydney, Österreich Canva VollzeitJoin the team redefining how the world experiences design. Hey, g'day, mabuhay, kia ora,你好, hallo, vítejte! Thanks for stopping by. We know job hunting can be a little time consuming and you're probably keen to find out what's on offer, so we'll get straight to the point. Where and how you can work Our flagship campus is in Sydney. We also...
-
Application Security Engineer
vor 4 Wochen
Sydney, Österreich Canva VollzeitJoin the team redefining how the world experiences design. Hey, g'day, mabuhay, kia ora,你好, hallo, vítejte! Thanks for stopping by. We know job hunting can be a little time consuming and you're probably keen to find out what's on offer, so we'll get straight to the point. Where and how you can work Our flagship campus is in Sydney. We also...
-
Senior security engineer
vor 2 Wochen
Sydney, Österreich Leracle VollzeitCompany Description At Leracle, we are at the forefront of technological innovation, providing cutting-edge solutions that empower businesses to stay secure in an ever-evolving digital landscape. As a leading global provider of advanced cybersecurity services and solutions, we pride ourselves on our commitment to protecting our clients' most valuable assets...
-
Cyber Security Applications Engineer
vor 1 Monat
North Sydney Council, Österreich Nine VollzeitCyber Security Applications Engineer - IdentityNine is Australia’s largest locally owned media company – the home of Australia’s most trusted and loved brands spanning News, Sport, Lifestyle, and Entertainment. We pride ourselves on creating the best content, accessed by consumers when and how they want – across Publishing, Broadcasting and...
-
Cyber Security Applications Engineer
vor 4 Wochen
North Sydney Council, Österreich Nine VollzeitCyber Security Applications Engineer - IdentityNine is Australia’s largest locally owned media company – the home of Australia’s most trusted and loved brands spanning News, Sport, Lifestyle, and Entertainment. We pride ourselves on creating the best content, accessed by consumers when and how they want – across Publishing, Broadcasting and...
-
Senior Security Engineer
Vor 7 Tagen
Sydney, Österreich Charterhouse Recruitment (Australia) VollzeitSenior Security Engineer OpportunityAre you passionate about protecting critical data in the fast-paced world of financial services? We're looking for a skilled Senior Security Engineer with 4-8 years of experience, including expertise in cloud environments.Your Role: As a Senior Security Engineer, you'll lead efforts to fortify the companies, computers,...
-
Senior Security Engineer
Vor 7 Tagen
Sydney, Österreich Charterhouse VollzeitSecurity (Information & Communication Technology) Senior Security Engineer OpportunityAre you passionate about protecting critical data in the fast-paced world of financial services? We're looking for a skilled Senior Security Engineer with 4-8 years of experience, including expertise in cloud environments.Your Role: As a Senior Security Engineer, you'll...
-
Web Application Firewall Engineer @ Deloitte
vor 2 Wochen
Sydney, Österreich Cyber Crime VollzeitWork in a highly innovative and transformative businessMentoring, growth and training – receive support and coaching to progress your careerPreventive and supportive mental health initiativesDeloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver...
-
Cyber Security Engineer
Vor 3 Tagen
Sydney, Österreich auspayplus.com.au VollzeitThe Game Changers:At AP+ we're changing the game! We're doing big things, and we can't do it alone. We're part of a big ecosystem, and we know teamwork and passion for our purpose is what will make us successful. We value the unique talents, perspectives, of all our employees. This includes people of all gender identities and sexual orientations, First...
-
Council of the City of Sydney, Österreich Australian Broadcasting Corporation VollzeitInformation Security Analyst – Application Security & Development Security (Information & Communication Technology)Government - Federal (Government & Defence) Full time Add expected salary to your profile for insights Sydney or Melbourne: Convenient CBD locationJoin a growing team servicing cybersecurity needs to Australia’s largest public...
-
Senior Security Engineer
vor 1 Monat
Sydney, Österreich ClearCompany VollzeitSenior Security Engineer required - focus on hardening Servers both physical & virtual. Our client, a major player in the cybersecurity domain, seeking a skilled Senior Security Engineer for an initial 3-month engagement with view to extend and opportunity to convert to Permanent. This role focuses on implementing rigorous hardening policies and...
-
1989 - Infrastructure Security Engineer
vor 1 Monat
Sydney, Österreich Vocus Group Vollzeit1989 - Infrastructure Security Engineer Location: 20 Bridge St, Sydney NSW 2000, Australia Req #: 1989 Application Deadline: Tuesday, 7 May 2024 Are you looking for an awesome place to work, where you can proudly be your authentic self, and be part of #oneteam? We are looking for a passionate team player who aligns with our values and culture, takes pride in...
-
1989 - Infrastructure Security Engineer
vor 3 Wochen
Sydney, Österreich Vocus Group Vollzeit1989 - Infrastructure Security Engineer Location: 20 Bridge St, Sydney NSW 2000, Australia Req #: 1989 Application Deadline: Tuesday, 7 May 2024 Are you looking for an awesome place to work, where you can proudly be your authentic self, and be part of #oneteam? We are looking for a passionate team player who aligns with our values and culture, takes pride in...
-
Sydney, Österreich Peoplebank Australia Ltd VollzeitJob Title: Cyber Security Operations Platform EngineerLocation: Sydney (Hybrid Work Setting)Duration: 12 months with possible extensionThe Platform Engineer (Cyber Security Operations) will lead the development of complex cyber security technologies and processes to with a lens on continual improvement. The candidate will lead the development of core and...
-
Security Engineer
Vor 7 Tagen
Sydney, Österreich Susquehanna International Group, LLP (SIG) VollzeitOverview SIG is looking for a Security Engineer to join our team in Sydney. What makes Security at SIG different?â¯Our global team leverages their diverse backgrounds to secure our environment and efficiently maintain SIG's competitive business advantage. With the freedom to dig into available technologies, our Security Engineers are able to design...