Carousell Group’s security team is seeking a security talent who has a solid technical background in application security.
You will become the primary security expert for multiple product lines, and act as the point of contact for engineering and security.
What will you be doing?
Perform security reviews/threat modelling to steer projects in the right direction early, participate in security code reviews, and perform penetration testing against products prior to shipping. Promote the adoption of secure coding practices and provide comprehensive training to engineering teams. Develop, document, and maintain security and compliance capabilities in support of DevOps processes. Expertise finding and fixing common security vulnerabilities (e.g., OWASP Top 10) Performing technical security assessments on our web applications, native clients, internal services