Senior Security Engineer

Software Architect DevOps Python

Company

GFT Technologies

Salary

Negotiable

Location

Ho Chi Minh, Ha Noi

Vacancies

1 person(s)

Benefit

13th month salary

Flexible working time

Full social insurance

Other benefits

Yearly salary review

Travel/company trips

Laptop/desktop for works

Performance bonus

Extra health insurance

Job Overview And Responsibility

- Develop and maintain security automation tools and scripts using Python to support application security and DevSecOps processes - Perform secure code reviews across platforms (Kotlin, Node.js, Android, iOS, Python), with strong emphasis on Python-based systems - Integrate and automate security controls into CI/CD pipelines (e.g., GitHub Actions) - Work closely with engineering teams to embed secure coding practices into the SDLC - Implement and manage SAST/SCA/DAST tools and automate vulnerability detection and remediation workflows - Support API and application security (REST, GraphQL), including authentication, authorization, and encryption practices - Conduct basic penetration testing and vulnerability validation (mobile, web, APIs) – depth is not required, focus is on remediation and automation - Perform threat modelling (e.g., STRIDE) and risk assessment for applications, especially in banking systems - Collaborate with infrastructure teams to ensure secure deployment on AWS cloud environments - Contribute to application security standards, policies, and best practices aligned with OWASP - Monitor and respond to emerging security threats, including risks related to AI- enabled systems - Support BAU security operations, vulnerability management, and continuous improvement initiatives

Required Skills and Experience

- 10+ years of total professional experience - 7+ years of hands-on experience in Python development - Strong experience with AWS cloud services and cloud security practices - Strong experience in Enterprise Security - Solid understanding of secure coding practices and code review methodologies - Experience integrating security tools into CI/CD pipelines - Familiarity with SAST/SCA/DAST tools - Basic understanding of penetration testing concepts and tools (e.g., Burp Suite, MobSF, Frida) - Knowledge of API security, authentication mechanisms, and cryptographic fundamentals - Experience working in Agile/DevOps environments - Experience working in banking/financial services domain - Proactive mindset - Good English communication skills

Why Candidate should apply this position

- Competitive Compensation - Benefits package including comprehensive medical, dental, vision and others - Company Culture based on our Core Values - Professional Development Training with Individual Development Plans to map out your career growth - Opportunity to work in a global environment with diverse teams built with colleagues from around the world - Opportunity to work with technology industry leaders in the financial services industry - Opportunity to work for big name clients in capital markets, banking and other industries

This is premium content. Please login to view all. Login here