Security Engineer - Application / Product Security, APAC

About the TeamThe team is missioned to build infrastructures, platforms and technologies, as well as to support cross-functional teams to protect our users, products and infrastructures. In this team you'll have a unique opportunity to have first-hand exposure to the strategy of the company in key security initiatives, especially in building scalable and secure-by-design systems and solutions. Our challenges are not your regular day-to-day technical problems; you'll be part of a team that's developing new solutions to new challenges of a kind not previously addressed by big tech. It's working fast, at scale, and we're making a difference. - Ensure that our applications are designed and implemented to the highest security and privacy standards thus maintaining and enhancing user trust. - Design and perform tests and check cases to analyze design, architectures, existing systems services, operating systems, networks and applications from a security perspective, via black box testing, code reviews, automation, threat modeling and research. This is to meet confidentiality, integrity, authentication, availability, authorisation, and nonrepudiation standards. - Translate requirements into test plan, write and execute test scripts or codes in line with standards and procedures to determine vulnerability to attacks. - Certify infrastructure components, systems and applications that meet security standards. - Discover security issues that appear under new threat scenarios, support incident response, forensics, remediation in a cross-functional environment driving towards incident resolution.

Minimum Qualifications - Bachelor's degree in Computer Science, Computer Engineering, Electrical Engineering, or other relevant majors. - Hands-on security engineering experience such as design review, threat modeling, security mitigation development, security tooling development or privacy engineering. - Advanced knowledge and understanding in various disciplines : web application security, mobile app security, network security, operating system internals and hardening, applied cryptography, cloud computing. You're expected to be an expert in at least one of these areas. - Solid experience in writing and reviewing code in at least one of the following programming languages : JavaScript (Node JS), Go, Python, Java, C++, Rust. - Strong problem-solving skills and excellent debugging / troubleshooting skills. Preferred Qualifications - CTF players, live competitions and hacking events experience. - CVEs such as remote code execution are preferred. - BugBounty experience with reputable statistics in HackerOne, BugCrowd etc.