We are looking for someone with .NET Development skills who enjoys working on the security side. You'll be in a team responsible for putting security at the forefront of everything our client develops.
The security knowledge we need is around securely developing in C# .NET; OAuth would be ideal. Someone that is able to describe the different types of auth flows. The ideal candidate is someone who would know that like the back of their hand, as well as good client-side and server-side secure development practices.
This is a key role for the company with responsibilities to ensure that our client is secure in everything they do, especially within their development group. Working closely with the security team, you will develop solutions to drive security best practices and mitigate security vulnerabilities identified through regular penetration testing and auditing, while also implementing and assessing for vulnerabilities during our SDLC. You will also regularly update the company on any developments in security, architecture, technologies, and guidelines through setting standards and facilitating discussions and workshops to improve security knowledge and tooling.
Some of the key responsibilities include the following, but please note, we don't require you to have worked in all these areas:
OAuth, implementing security patching/fixes for vulnerabilities, or able to talk to secure development practices
Remediate vulnerabilities discovered during penetration tests, security reviews, or vulnerability discovery
Perform security due diligence on new projects, products, and components
Drive improvements to security tooling and standards within the Software Development Lifecycle
Work closely with the security steering group to improve ISMS posture
Work with Security Architect to review and provide analysis on the current design of the platform and the proposed designs for any future projects
Provide, or facilitate provision of, mentoring, training, and guidance with teams and individuals where required
If you are a Developer starting your journey in security, we would still love to hear from you, looking for at least 3 years in development, understanding of security principles, ISO standards, and SecDevOps would be welcomed. Junior to Senior options welcome to apply.
Please note, you will need a valid NZ Visa for this role.
Kia ora, Comspek and our clients fully support and encourage diverse hiring and inclusive recruitment processes. Don't meet every single requirement of this job description? That's ok - You do not need to tick every box or have expertise in the full JD. Comspek is dedicated to building diverse, inclusive, and authentic workplaces based on different clients' needs. So, if you're excited about this role, we encourage you to apply.
#J-18808-Ljbffr