Security Test Engineer/Infosec Analyst
Taguig, National Capital, Philippines
WTW
Bei WTW bieten wir datengesteuerte, evidenzbasierte Lösungen in den Bereichen Mitarbeiter, Risiko und Kapital an.Responsibilities include:
- Build effective relations and engage in business security activities like vulnerabilities assessment, engage in third party penetration tests, DAST, SAST, security testing.
- Lead the responses for the information security RFI/RFPs for various applications.
- Provide feedback on security contracts and client audits.
- Support annual Segment self-assessment working with senior leadership in the team.
- Track the compliance with information security strategies when migrating applications into a cloud environment. Work with development and internal IT teams to ensure compliance to WTW security standards.
- Manage and oversee ad hoc projects related to enhancing information and data security controls for business to meet compliance.
- Implement, test and operate advanced software security tools and techniques. Maintain technical documentation.
- Collaborate with other development teams to ensure that Security Testing activities provide the highest benefits. Help security/infosec move towards left in SDLC.
The Requirements
- Expert understanding of all aspects of information security principles, policy and its application in business and technology areas (at least 2 years of experience).
- 2+ years prior hands-on experience in a Security Engineer/Security Tester/Information Security Analyst role.
- Experienced in security testing and understanding of information security concepts for cloud-based applications.
- Experience working in cross-functional virtual teams
- Effective communication and documentation skills
- Experience with client or internal stakeholder communication with respect to security assessments, controls, supporting client audit activities, third party penetration test etc.
- Client focus: ability to engage positively with WTW clients and business stakeholders.
- Proficient in the use of security testing tools for SAST, DAST, SCA, security testing etc. (eg. - Netsparker, Checkmarx, CredScan, Burp Suite, OWASP ZAP, Qualys, etc.)
- Interest in all aspects of security research and development and assist in recommending testing tools for the team.
- Bachelor’s Degree in Computer Science, Engineering, Information Systems, or related field;
- Experience with testing products on any of the following technology: C#, SQL, Angular, jQuery, web services or similar.
Equal Opportunity Employer
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
9
0
0
Categories:
Analyst Jobs
Security Engineering Jobs
Tags: Audits Burp Suite C Checkmarx Cloud Compliance Computer Science DAST OWASP Qualys SAST SDLC Security assessment SQL Vulnerabilities
Region:
Asia/Pacific
Country:
Philippines
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsSenior Cloud Security Engineer jobsSenior Security Analyst jobsInformation Security Manager jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsSecurity Consultant jobsIT Security Engineer jobsSecurity Specialist jobsSenior Information Security Analyst jobsSenior Penetration Tester jobsCyber Security Specialist jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsSystems Engineer jobsSystems Administrator jobsIT Security Analyst jobsSenior Product Security Engineer jobsCloud Security Architect jobsPrincipal Security Engineer jobsStaff Security Engineer jobsCyber Security Architect jobsSecurity Operations Analyst jobs
Kubernetes jobsForensics jobsCI/CD jobsEncryption jobsSaaS jobsSDLC jobsIDS jobsEDR jobsSplunk jobsIPS jobsBash jobsRMF jobsOWASP jobsTop Secret jobsIntrusion detection jobsSQL jobsCompTIA jobsFinance jobsThreat detection jobsDocker jobsITIL jobsDoDD 8570 jobsCRISC jobsActive Directory jobsOSCP jobs
VPN jobsBanking jobsGIAC jobsTCP/IP jobsUNIX jobsHIPAA jobsSANS jobsClearance Required jobsTerraform jobsMITRE ATT&CK jobsSOX jobsSOC 2 jobsIT infrastructure jobsCISO jobsIndustrial jobsCCSP jobsJavaScript jobsDNS jobsData Analytics jobsSOAR jobsPolygraph jobsCryptography jobsJira jobsAnsible jobsCyber defense jobs