OWASP - Certified Security Engineer

Remote•Philippines•Full-time
₱60,000 - ₱85,000 monthly

About the Job

Job Title: OWASP-Certified Security Engineer

Role Overview

We are seeking an OWASP-Certified Security Engineer to strengthen our application security posture and ensure our products meet industry-leading security standards. The ideal candidate will have hands-on experience identifying vulnerabilities, implementing secure development practices, and working closely with engineering teams to build and maintain secure systems.

Key Responsibilities:

Conduct application security assessments based on OWASP methodologies (OWASP Top 10, ASVS, MASVS, etc.).
Perform code reviews, penetration testing, and threat modelling.
Collaborate with development teams to integrate secure coding practices into SDLC.
Identify, report, and remediate vulnerabilities in web, mobile, and backend systems.
Develop and maintain security policies, standards, and best practices.
Implement and manage security tools.
Provide security training and guidance to engineers and stakeholders.
Monitor emerging threats and ensure continuous improvement of security controls.

Required Qualifications:

OWASP certification (e.g., OWASP Top 10 Practitioner, OSCP with OWASP focus, or equivalent OWASP-recognized credential).
Strong understanding of secure coding practices and common vulnerabilities.
Experience with web technologies (HTML, JS, APIs, frameworks).
Hands-on expertise with security testing tools (Burp Suite, ZAP, etc.).
Familiarity with CI/CD and DevSecOps principles.

Preferred Qualifications:

Experience in cloud security (AWS, Azure, or GCP).
Knowledge of container security (Docker, Kubernetes).
Additional security certifications (OSCP, CEH, CISSP, CSSLP).
Experience in incident response or security operations.

Soft Skills:

Strong analytical and problem-solving abilities.
Excellent communication and documentation skills.
Ability to work cross-functionally and support multiple teams.

Apply