Company Profile:
Programmers Force is a product-driven software company that excels in the field of Artificial Intelligence and Machine Learning since 2016. The company was founded by a team of visionary entrepreneurs that led its operations under software development, data science, DevOps, system architecture, big data processing, and blockchain-based applications development. We take pride in our diversified workforce with talent coming from top institutions of Pakistan and abroad. Our vision is to create innovative and intelligent business solutions through the development of smart web & mobile applications with a mission to support global industries in their day-to-day business challenges. Our specialized teams
possess tacit knowledge of high-tech systems that enables us to tap businesses from more than 200 countries worldwide. This is just the beginning for us! We are in search of talented candidates with technical expertise who can add value to our fast-paced and work-intensive environment.
Tack of Programmers Force:
Not only the way out but the best way out! No rather, no “one or two” but a must for all. Win-Win is the goal.
Job Description:
The Application Security Engineer will be responsible for conducting vulnerability assessments and penetration testing on computer systems, web applications, networks, and mobile applications. The Engineer will work with other members of the security team to develop and implement strategies to identify and remediate security vulnerabilities.
Responsibilities:
- Perform comprehensive application security assessments, including static and dynamic analysis, to identify and mitigate vulnerabilities in our software applications.
- Conduct manual and automated penetration testing of web and mobile applications, APIs, and other software components to identify security weaknesses.
- Collaborate with development teams to integrate secure coding practices and security controls into the software development lifecycle (SDLC).
- Provide guidance and support to development teams in remediating identified vulnerabilities and security issues.
- Stay updated with the latest security threats, attack vectors, and industry best practices, and ensure that our application security practices align with emerging trends.
- Conduct code reviews to identify and address security flaws and coding vulnerabilities.
- Develop and maintain application security standards, guidelines, and procedures to ensure consistent and effective security practices across the organization.
- Participate in security incident response activities, including investigations, root cause analysis,
and remediation of security incidents related to applications and systems. - Collaborate with cross-functional teams, including developers, architects, and system administrators, to design and implement secure application architectures and infrastructure.
- Conduct security awareness training sessions for developers and other stakeholders to promote a strong security culture.
- Mentor and guide junior members of the cybersecurity team, providing them with technical expertise and professional guidance.
Education & Experience Requirements:
- At least 2-3 years of experience in application security, with a strong focus on web and mobile applications.
- In-depth knowledge of secure coding practices, secure development methodologies, and common security vulnerabilities (OWASP Top 10).
- Experience with application security testing tools, such as SAST, DAST, and SCA tools
- Proficiency in manual penetration testing techniques and tools.
- Strong understanding of web application architectures, APIs, and common web technologies (e.g., HTML, CSS, JavaScript, REST, SOAP).
- Familiarity with secure development frameworks and libraries (e.g., OWASP ESAPI).
- Knowledge of cloud platforms (e.g., AWS) and their security implications for application deployments.
- Familiarity with secure development frameworks and libraries (e.g., OWASP ESAPI).
- Knowledge of cloud platforms (e.g., GCP) and their security implications for application
deployments. - Familiarity with secure software development lifecycle (SDLC) methodologies (e.g., Agile, DevSecOps).
- Strong analytical and problem-solving skills, with the ability to quickly identify and resolve complex security issues.
- Excellent communication skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders.
- Security certifications such as Certified Ethical Hacker (CEH), Certified Application Security Engineer (CASE), Offensive Security Certifications (OSWE or OSCP) or similar certifications are a plus.
- Experience in the financial, healthcare, or e-commerce industries is desirable.
Perks:
- Lunch on the House
- Flexible Working Hours
- Payment for Overtime
- Annual Leaves
- Enjoy your weekend, we work on weekdays only
- Health Insurance
- Life Insurance
- Provident Fund
- EOBI
- Advance Salary
- Family Care
- Family Treat
- Personal Loan
- In House Trainings
- Certifications
- Surprise Gifts & Performance based Bonuses
- Performance based salary increment and promotion
- Gym & Indoor Gaming – Perfect balance between work and play
- Opportunity to engage in frequent local and international trips
- Child Education
- Marriage Allowance
- Maternity Allowance
- Home Allowance
- Hostel Allowance
- Travel Allowance
- Personal Growth – Learn the best from the best
- Bike
- Car