عرض العمل هذا غير متوفر في بلدك.

Senior / Staff Application Security Analyst (Bangkok based, relocation provided)

AgodaJeddah, Makkah Region, Saudi Arabia

5 منذ أيام

الوصف الوظيفي

Agoda is an online travel booking platform for accommodations, flights, and more. We build and deploy cutting-edge technology that connects travelers with a global network of hotels, holiday properties, flights, activities, and more. Our team is diverse and global, with a culture of experimentation and ownership.

The Security Department oversees security, governance, risk management, compliance, and security operations for Agoda. We are focused on preventing breaches and vulnerabilities and are early adopters of new technology in a dynamic environment.

Responsibilities

As a Security Analyst, you will focus on identifying, analyzing, and remediating vulnerabilities across our environment. You will be hands-on with penetration testing and vulnerability management to keep systems secure and resilient.
Develop Security Automation Tools to implement solutions at scale.
Triage security findings from multiple tools and work with hundreds of teams to remediate within the right SLA.
Conduct security assessments through code reviews, vulnerability assessments, penetration testing, and risk analysis.
Research the negative effects of vulnerabilities, from minimizing impact to informing future security controls.
Identify potential threats to protect the organization from malicious actors, including Vulnerability Management, Bug Bounty Program, and Penetration Testing.
Develop Security Trainings for developers.
Collaborate with the DevSecOps team to integrate tools into CI / CD and fine-tune rules and precision.

What you\'ll Need to Succeed

5+ years in the information security field.

5+ years of experience with Penetration Testing (Web, Infra, Mobile, APIs) and Vulnerability Management.

Minimum 1 year of experience running a bug bounty program.

Minimum 2 years of experience with cloud environments (e.g., OpenShift, Rancher, Kubernetes, AWS, GCP, Azure).

Experience performing security testing, including code reviews and web application security testing.

Familiarity with GitLab, DefectDojo, JIRA, Confluence.

Proficient in one or more programming languages (e.g., Python, Go, Node.js).

Familiarity with analytics platforms and databases (GraphQL, REST APIs, PostgreSQL, MS SQL, Kafka, Hadoop, S3).

Strong knowledge of security assessment tools (Nessus, Acunetix, and similar platforms) and fuzzers.

Nice to Have

Knowledge in Container Image Security, Dependency Checking, Fuzzing, and License Scanning.

Familiarity with security incident response processes and 0-days.

Security Certifications.

Equal Opportunity Employer. Agoda is committed to equal employment opportunity regardless of sex, age, race, color, national origin, religion, marital status, pregnancy, sexual orientation, gender identity, disability, citizenship, veteran or military status, or other legally protected characteristics. We may keep applications on file for future vacancies unless you request removal. For details, please read our privacy policy.

#J-18808-Ljbffr

إنشاء تنبيه وظيفي لهذا البحث

Security Analyst • Jeddah, Makkah Region, Saudi Arabia