Application Security Engineer – Commercial Bank of Ceylon PLC
About the Job
We are looking for someone to help make our applications and cloud systems more secure.
What You’ll Do:
- Run regular security checks as planned.
- Add automated security tests to our software development process.
- Make sure our cloud systems (like AWS, Azure, GCP) are safely set up and maintained.
- Test mobile apps, websites, and APIs for security issues.
- Work with other teams to build security into every step of development.
- Review system designs to find and fix security problems.
- Check code and app designs to make sure they follow safe coding rules.
- Teach other teams how to follow security best practices.
Who We’re Looking For:
- A degree in IT, Computer Science, or Cyber Security.
- At least 2 years of experience in app security and testing tools like SAST and DAST.
- Security certifications like eJPT, CHFI, CEH, or Security+.
- Good knowledge of common security risks (e.g., OWASP Top 10).
- Experience with cloud systems and containers (like Docker or Kubernetes) is a plus.
- Strong problem-solving and communication skills.
- Able to work well alone or in a team.