job description
Join Alphaeus Pte. Ltd. as an IT Security Officer (Consultant) – Application Security and play a pivotal role in safeguarding our digital ecosystem. In this dynamic position, you will collaborate with cross-functional teams to ensure the secure design, development, and deployment of enterprise applications. Your expertise will drive the implementation of cutting-edge security protocols, threat modeling, and vulnerability assessments to mitigate risks and protect sensitive data.
Based in the vibrant regions of Bali (Canggu, Ubud, Denpasar, Jimbaran, Nusa Dua, Kuta, Badung), this contract role offers a unique opportunity to work in a fast-paced, innovative environment while enjoying the island’s inspiring work-life balance. If you are passionate about cybersecurity, possess a deep understanding of application security frameworks, and thrive in collaborative settings, we want to hear from you.
At Alphaeus, we empower our consultants to make a tangible impact by leveraging their technical acumen and strategic thinking. This role is ideal for professionals seeking to advance their career in a forward-thinking organization committed to excellence in IT security.
Responsibility
- Conduct comprehensive security assessments of applications, including static (SAST) and dynamic (DAST) analysis, to identify vulnerabilities.
- Develop and enforce secure coding standards and best practices across development teams.
- Perform threat modeling and risk assessments for new and existing applications to proactively address security gaps.
- Collaborate with software developers, DevOps, and QA teams to integrate security controls into CI/CD pipelines.
- Design and implement security architectures for cloud-based and on-premise applications, ensuring compliance with industry standards (e.g., OWASP, ISO 27001).
- Monitor and respond to security incidents related to applications, conducting root cause analysis and remediation.
- Provide security awareness training and guidance to stakeholders on emerging threats and mitigation strategies.
- Stay abreast of the latest cybersecurity trends, tools, and technologies to continuously enhance application security posture.
Qualifications
- Bachelor’s degree in Computer Science, Information Security, or a related field; advanced certifications (e.g., CISSP, CISM, CEH, OSCP) are a plus.
- Minimum 5 years of experience in application security, penetration testing, or secure software development.
- Proficiency in security testing tools such as Burp Suite, OWASP ZAP, Nessus, or similar.
- Strong knowledge of secure coding practices (e.g., OWASP Top 10) and frameworks like SAST/DAST, SCA.
- Experience with cloud security (AWS, Azure, GCP) and containerization (Docker, Kubernetes) in application environments.
- Familiarity with compliance standards such as PCI-DSS, GDPR, or NIST.
- Excellent analytical, problem-solving, and communication skills to articulate security risks to technical and non-technical audiences.
- Ability to work independently in a fast-paced, contract-based role with a focus on delivering high-impact security solutions.