Application Security Officer-

Application Security Officer-

AXA Group Operations Malaysia Sdn Bhd
Philippines
Not Specified
Not Specified
Posted On: 3 days ago Total Applications : 51 Job Id: 30751961
Permanent Job

Job Description



Full-time
Job Purpose:
The mission consists in filling the role of Application Security Office and Vulnerability Expert for regular qualification of application vulnerability, timely monitoring, collecting, analysing application vulnerability data and delivering vulnerability mitigation recommendation to the IT Teams.
The sources of information include but are not limited to Web Application Firewall (WAF) alerts, security scanner reports, published vulnerabilities from vendors and internal/external threat intelligence sources. The position will also support incident handling for application vulnerabilities.
Job Scope:

  1. Lead the application security function in Asia and work closely with Global CyberDefense teams across the world.

  2. Identify the vulnerability severity on our applications from Various automated tools like Qualys (DAST) and SCA - J-Frog XRAY

  3. Analyze the impact of Security bulletins on our applications (using the application component inventory)

  4. Prioritize the patches required and Coordinate with other security team members [Qualys Scan Execution team and Center of Excellence / WAF] to run further scans and WAF patches

  5. Track and record decisions made on how to treat the vulnerabilities

  6. Oversight and coordinate all work related to application vulnerability management in Asia

  7. Analyzing structured and unstructured datasets from various sources to analyses vulnerabilities and produce remediation recommendations

  8. Prioritize the emergency of vulnerability remediation activities

  9. Provide technical advisory to IT Production or Development Teams to effectively remediate vulnerabilities

  10. Ensure timely follow up for remediation of vulnerabilities

  11. Recommend compensatory measures when remediation takes time and the vulnerability exposure windows is not acceptable in regard to the threat level

  12. Report on mitigation status and threat exposure

  13. Own the application vulnerability management process and strive to optimize it

  14. Assist in investigation of security issues by reviewing the results of WAF alerts and other vulnerability identification (vulnerability scanning, penetration testing, etc.)

  15. Consult on incident handling which includes implementation of containment, protection and remediation activities

  16. Perform manual testing using tool such as Burp suite

  17. Flexible in supporting stream lining application security process and SSDLC and

  18. Support initiative for improving overall application security maturity

  19. Coordinate with Infra Security team for SCA vulnerabilities, identified through Qualys VM process.

  20. Supporting Cloud migration project from application security standpoint and setting up the new process


About AXA Group Operations Malaysia Sdn Bhd

Would you like to wake up every day driven and inspired by our mission of acting for human progress by protecting what matters Here at AXA we strive to be a responsible employer, placing employee engagement at the heart of its business strategy. Achieving this means creating a workplace built on AXA%27s Values that foster diversity and equal opportunities for all, promotes employee participation, encourages professional development, and supports employee well-being. We are looking for talented individuals who come from varied backgrounds, think differently and want to be part of this exciting transformation by challenging the status quo so we can push AXA - a leading global brand and one of the most innovative companies in our industry - onto even greater things. In a fast-evolving world and with a presence in 57 countries, our 160,000 employees anticipate change to offer services and solutions tailored to the current and future needs of our 108 million customers.

Job Source : jobs.axa
Report this Job

Similar Jobs

Cyber Security Officer

John Clements Consultants Inc

Position Summary * The successful candidate will work for Security Operations Information Protection Group in a critical role designed to help protect and defend against the loss of the company's most critical data. * The main duties of the per

Philippines
0 - 50 Years

Security Officer

Meralco

Job Summary: * Management and provision of security services * Provision of executive protection and liaison services Qualifications: * Must be a graduate of Criminology, Criminal Justice, or related course * Must be able to drive two-wh

Philippines , Pasig City
0 - 50 Years

Security Officer

Ninja Logistics sdn bhd

DUTIES AND RESPONSIBILITIES * Implements and reviews security regulations and restrictions related to company operations. * Assists with the development and implementation of fraud detection/prevention systems * Conducts daily inspecti

Metro Manila / NCR , Manila
4 - 7 Years

Information security Expert

AXA Group Operations Malaysia Sdn Bhd

Full-time The key responsibilities of the Information Security Expert are: . Conduct 3rd party Security Assessments, & 3rd party Audits . Conduct Product & Project risk assessments and suggest action plans. . Perform Penetration Testing oversight . D

Philippines
0 - 50 Years

Information Security Practitioner-

AXA Group Operations Malaysia Sdn Bhd

Full-time Within Group Operations, Group Security: * Defines AXA&rsquos information security standards and instructions and overseeing their implementation across the Group * Drives information security risk management (e.g. ident

Philippines
0 - 50 Years

Vice President (C13) - GIS Business Information Security Officer BISO (ROHQ - Chief Information Security Office)

Citi

Job Description : The Information Security Operations (ISO) Lead Analyst is a senior level professional responsible for driving efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this rol

Philippines
6 - 10 Years

Cyber Security Engineer

Willis Towers Watson

The Role The Cyber Security Engineering Team is responsible for the availability, effectiveness, and coverage of centrally managed security platforms. This includes managing the technologies and creating processes to support this mission. Reporting t

Taguig , Philippines
0 - 50 Years

Manager, SOX and CAP Management

Manulife - Agnes Yung

Are you looking for a supportive, collaborative workplace with great teams and inspiring leaders? You've come to the right place. We're looking for ambitious people who share our values and want to make every day better for people around the world. I

Quezon City
0 - 50 Years

Manager, SOX and CAP Management

Manulife (International) Limited - Selen Chan

Are you looking for a supportive, collaborative workplace with great teams and inspiring leaders? You've come to the right place. We're looking for ambitious people who share our values and want to make every day better for people around the world. I

Quezon City
0 - 50 Years

Manager, SOX and CAP Management

The Manufacturers Life Insurance Co (Phils) Inc( Manulife Philippines )

Are you looking for a supportive, collaborative workplace with great teams and inspiring leaders? You've come to the right place. We're looking for ambitious people who share our values and want to make every day better for people around the world. I

Quezon City
0 - 50 Years

GDS Consulting_TPRM (Third Party Risk Management) Senior

Ernst & Young Global Services Philippines Inc

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even b

Taguig , Philippines
0 - 50 Years

ISO Lead Analyst VP/C13 - (ROHQ - Chief Information Security Office)

Citi

Job Description : The Information Security Operations (ISO) Lead Analyst is a senior level professional responsible for driving efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this rol

Philippines
6 - 10 Years

ROHQ - GIDA - Identity & Access Management Analyst 2 (Information Security)

Citi

Job Description : The Global ID Administration (GIDA) Analyst 2 is an intermediate level position responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is t

Philippines
0 - 2 Years

Senior Security Analyst

Vestas Wind Systems

The role is primarily responsible for providing Tier 3 Security Incident analysis. Infrastructure Delivery & Support Infrastructure and Platform Management Security Engineering Team Responsibilities * Train, coach, mentor, and groom other Security

Philippines
0 - 50 Years

Security Analyst - ISO27001

Eastvantage Business Solutions Inc.

About the role: * Provide backup to the IT Security SME. * Stay abreast of industry best practices in risk management. * Assist the Major Incident Management role in the event of a Security related breach. * Perform security awareness edu

Taguig , Philippines
0 - 50 Years

CYBER SECURITY ANALYST

Techno Global Team

We are looking for talented, experienced and self-motivated individuals to join our team. Are you ready to take this excellent opportunity in becoming TGT\u0027s CYBER SECURITY ANALYST? Techno Global Team is currently seeking to fill a promising CYB

Philippines
0 - 50 Years

Cyber Security Analyst

IBEX Global Solutions (Philippines) Inc.

Overview Cyber Security Engineer that helps to protect organization by deploying and supporting a range of technologies to ensure visibility against cyber threats.

Philippines
0 - 50 Years

Client Security Analyst

Concentrix

* Implement client security requirements as agreed in the contract. * Maintain an audit ready posture for client / regulatory / Industry standard audits. * Develop relationships within client security and compliance program to ensure direct a

Mandaluyong City
0 - 50 Years

CYBER SECURITY ANALYST

Techno Global Team

We are looking for talented, experienced and self-motivated individuals to join our team. Are you ready to take this excellent opportunity in becoming TGT\u0027s CYBER SECURITY ANALYST? Techno Global Team is currently seeking to fill a promising CYB

Philippines
0 - 50 Years

INFORMATION SECURITY ANALYST

Entrego

Job Description Requirements * Bachelor's degree in computer science or Information management * Experience with computer network penetration testing and techniques * Understanding of firewalls, endpoint security, IDS/IPS concepts * Abi

Philippines
0 - 50 Years

Career Advice to Find Better

  • Job Search Strategy

  • Interview Tips

  • Resume & Cover Letters

  • Salary Negotiation

How to talk about your horrible boss in a job interview
May 06, 2020
5 Tips to Get Yourself Ready for Online Job Interview in the Wake of Coronavirus
May 04, 2020
Dress Your Best for That Interview
Feb 27, 2020
The 10 Worst Mistakes Career Changers Make
Feb 27, 2020
How to spin your CV for a career in a new industry
May 06, 2020
CV vs Resume - Do you know the difference?
May 06, 2020
Visual Resumes: 5 CV templates to take inspiration from
May 06, 2020
What's your resume objective?
May 06, 2020
What successful entrepreneurs can teach you about money
Jan 18, 2019
How to handle multiple job offers
Dec 01, 2017
5 strategies to negotiate your salary benefits
Aug 22, 2017
When Your Salary Makes You Too Expensive
Nov 25, 2010
Good work life balance can positively impact the business
May 06, 2020
Deskercise to stay fit and healthy in office
May 06, 2020
How to set boundaries for yourself at work
May 06, 2020
Four office friendly fun pranks to play on April Fools' Day
May 06, 2020
5 things you should know about job hopping
May 06, 2020
4 reasons why Filipinos are dissatisfied in their current career
May 06, 2020
Why Filipinos are eager to switch careers
May 06, 2020
How to overcome your fear of switching industries
Nov 13, 2018

Simple body text this will replace with orginal content