Job Description: Conduct security review for new application or major enhancements of existing application.
Understand the application functions and data flow.
Verify the security controls of the application.
-Ensure the compliance with the Government security requirement.
Review server hardening and vulnerability scanning report.
Understand the finding identified in the report, the associated risk and how to mitigate the risk.
Review and confirm the mitigation measure can address the risk.
Answer IT security related enquiries.
Requirement Details: Higher Diploma / Degree in Information Technology or Information Security Familiar with Government security requirement and have knowledge in application development.
Have knowledge in hardening of operation system and common vulnerability of web application.
Understand application development life cycle.
Hands-on experience in administration for Linux system.
Possess professional security qualification (e.g.
Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP) and Certified Information Security Professional (CISP)) is preferrable.
