Agoda
Senior Application Security Engineer (Bangkok based, relocation provided)
Agoda, Chicago, Illinois, United States, 60290
Overview
Senior Application Security Engineer (Bangkok based, relocation provided)
at Agoda Join to apply for the
Senior Application Security Engineer (Bangkok based, relocation provided)
role at
Agoda . Bangkok, Thailand About Agoda
Agoda is an online travel booking platform for accommodations, flights, and more. We build and deploy cutting-edge technology that connects travelers with a global network of 4.7M hotels and holiday properties worldwide, plus flights, activities, and more. Based in Asia and part of Booking Holdings, our 7,100+ employees representing 95+ nationalities in 27 markets foster a work environment rich in diversity, creativity, and collaboration. We innovate through a culture of experimentation and ownership, enhancing the ability for our customers to experience the world. The Opportunity
You will be working in a fast paced DevSecOps environment where code changes happen at a rapid speed and it is paramount to integrate security testing into a continuous deployment/integration flow. What you’ll get to do
Play a lead role in developing and designing application-level security controls and standards. Perform application security design reviews against new products and services. Track and prioritize all security issues. Build internal security tools that help fix security problems at scale. Perform code review and drive remediation of discovered issues. Enable automated security testing at scale to measure vulnerability and report risk across all microservice, web, and mobile platforms. Execute security tests on thousands of servers spread across on-premise and public cloud data centers. What you’ll need to succeed
Strong foundations in software engineering. Minimum of 7 years of technical experience with threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration, and network security. Minimum 2 years experience with Software Development Life Cycle in one or more languages (Rust, Python, Go, Node.js, etc.). Minimum 1 year experience with public/private cloud environments (Openshift, Rancher, Kubernetes, AWS, GCP, Azure, etc.). Experience in running assessments using OWASP MASVS and ASVS. Working knowledge of exploiting and fixing application vulnerabilities. Strong background in threat modeling. In-depth knowledge of common web application vulnerabilities (e.g. OWASP Top 10). Familiarity with automated dynamic scanners, fuzzers, and proxy tools. Analytical problem-solving mindset and offensive security tactics. Highly effective communication skills, in both verbal and written forms. Relocation package is provided if you relocate to Bangkok, Thailand. Benefits & Work Model
Hybrid working model WFH set up allowance 30 days of remote working from anywhere globally every year Employee discount for accommodation globally Global team of 90+ nationalities 40+ offices in 25+ countries Annual CSR / Volunteer Time off Benevity subscription for employee donations Volunteering opportunities globally Free Headspace subscription Free Odilo & Udemy subscriptions Access to Employee Assistance Program Enhanced Parental Leave Life, TPD & Accident Insurance Equal Opportunity
Equal Opportunity Employer. Agoda is committed to equal employment opportunity regardless of sex, age, race, color, national origin, religion, marital status, pregnancy, sexual orientation, gender identity, disability, citizenship, veteran or military status, or other legally protected characteristics. We will keep your application on file and you can request removal at any time. For more details, please read our privacy policy.
#J-18808-Ljbffr
Senior Application Security Engineer (Bangkok based, relocation provided)
at Agoda Join to apply for the
Senior Application Security Engineer (Bangkok based, relocation provided)
role at
Agoda . Bangkok, Thailand About Agoda
Agoda is an online travel booking platform for accommodations, flights, and more. We build and deploy cutting-edge technology that connects travelers with a global network of 4.7M hotels and holiday properties worldwide, plus flights, activities, and more. Based in Asia and part of Booking Holdings, our 7,100+ employees representing 95+ nationalities in 27 markets foster a work environment rich in diversity, creativity, and collaboration. We innovate through a culture of experimentation and ownership, enhancing the ability for our customers to experience the world. The Opportunity
You will be working in a fast paced DevSecOps environment where code changes happen at a rapid speed and it is paramount to integrate security testing into a continuous deployment/integration flow. What you’ll get to do
Play a lead role in developing and designing application-level security controls and standards. Perform application security design reviews against new products and services. Track and prioritize all security issues. Build internal security tools that help fix security problems at scale. Perform code review and drive remediation of discovered issues. Enable automated security testing at scale to measure vulnerability and report risk across all microservice, web, and mobile platforms. Execute security tests on thousands of servers spread across on-premise and public cloud data centers. What you’ll need to succeed
Strong foundations in software engineering. Minimum of 7 years of technical experience with threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration, and network security. Minimum 2 years experience with Software Development Life Cycle in one or more languages (Rust, Python, Go, Node.js, etc.). Minimum 1 year experience with public/private cloud environments (Openshift, Rancher, Kubernetes, AWS, GCP, Azure, etc.). Experience in running assessments using OWASP MASVS and ASVS. Working knowledge of exploiting and fixing application vulnerabilities. Strong background in threat modeling. In-depth knowledge of common web application vulnerabilities (e.g. OWASP Top 10). Familiarity with automated dynamic scanners, fuzzers, and proxy tools. Analytical problem-solving mindset and offensive security tactics. Highly effective communication skills, in both verbal and written forms. Relocation package is provided if you relocate to Bangkok, Thailand. Benefits & Work Model
Hybrid working model WFH set up allowance 30 days of remote working from anywhere globally every year Employee discount for accommodation globally Global team of 90+ nationalities 40+ offices in 25+ countries Annual CSR / Volunteer Time off Benevity subscription for employee donations Volunteering opportunities globally Free Headspace subscription Free Odilo & Udemy subscriptions Access to Employee Assistance Program Enhanced Parental Leave Life, TPD & Accident Insurance Equal Opportunity
Equal Opportunity Employer. Agoda is committed to equal employment opportunity regardless of sex, age, race, color, national origin, religion, marital status, pregnancy, sexual orientation, gender identity, disability, citizenship, veteran or military status, or other legally protected characteristics. We will keep your application on file and you can request removal at any time. For more details, please read our privacy policy.
#J-18808-Ljbffr