Back to jobsDevelop and maintain security automation tools and scripts using Python to support application security and DevSecOps processes
Perform secure code reviews across platforms (Kotlin, Node.js, Android, iOS, Python), with strong emphasis on Python-based systems
Integrate and automate security controls into CI/CD pipelines (e.g., GitHub Actions)
Work closely with engineering teams to embed secure coding practices into the SDLC
Implement and manage SAST/SCA/DAST tools and automate vulnerability detection and remediation workflows
Support API and application security (REST, GraphQL), including authentication, authorization, and encryption practices
Conduct basic penetration testing and vulnerability validation (mobile, web, APIs) – depth is not required, focus is on remediation and automation
Perform threat modelling (e.g., STRIDE) and risk assessment for applications, especially in banking systems
Collaborate with infrastructure teams to ensure secure deployment on AWS cloud environments
Contribute to application security standards, policies, and best practices aligned with OWASP
Monitor and respond to emerging security threats, including risks related to AI-enabled systems
Support BAU security operations, vulnerability management, and continuous improvement initiatives
