IT Security Architect - Application Security (Technology)


  • South Jakarta, Indonesia
    South Jakarta, DKI Jakarta, Indonesia, South Jakarta, DKI Jakarta, Indonesia
    South Jakarta
    DKI Jakarta
  • Full time
Posted 7 days ago and deadline of application is on 10 Aug
Recruiter was hiring 14 minutes ago

IT Security Architect - Application Security (Technology)


Job Description

  • Understanding existing application architecture in terms of used technology (framework) along with applied security controls; and documenting it into application security architecture document
  • Defining security requirements of the application (enhancement of current ones or to be purchased) by evaluating business strategies and requirements, referring to security standards
  • Devising the target state of application security architecture referring to security standards and communicating it to a team that is responsible in defining policy, procedure, and standard, to be evaluated and governed
  • Designing application security controls in detail to protect critical assets which are stored and processed in the application by considering business risks
  • Evaluating available solutions in the market and its requirements (as references in the selection process) that can meet our security requirements in the application level
  • Preparing cost estimation for proposed solution intended to enhance protection capabilities of critical assets in the application
  • Responding to technical questions or challenges related to security controls which should be applied in the application
  • Developing secure code material and socializing it periodically to the engineering team as part of Secure SDLC implementation program
  • Introducing static code analysis through automation process to ensure the vulnerabilities in produced application can be identified earlier before manual or dynamic testing conducted
  • Reporting and communicating issues found with the established application security configuration which requires top management attention to gain the approval
  • Working closely with the team that has a function in threat intelligence in relation to respond actively to possible threats of used technology (framework) in the application
  • Working closely with the team that is responsible to manage the changes of the application in order to introduce application security requirements
  • Validating established security requirements and to recommend additional security requirements and safeguards of the application

Minimum Qualifications

  • Experience developing an application in mobile (Android and iOS) and web platforms
  • Proficient with mobile and web application (Golang) frameworks, including microservices architecture
  • Experience implementing secure code and running Secure SDLC or DevSecOps
  • Solid understanding encryption, hashing, and any other controls in application to protect sensitive data
  • Solid understanding application logic through source code or compiled application
  • Experience in application security testing concepts such as reverse engineering, binary exploitation, and buffer overflow and ever cracking or evading application controls for a specific purpose
  • Experience determining security solutions for application
  • Able to draft expert guidance that assists colleagues understanding of complex or new concepts in relation with application security
  • Preferably pose CISSP certification

Jobs Summary

Job level
Associate / Supervisor
Job category
IT and Software
Educational requirement
Bachelor's degree graduate
Office Address
South Jakarta, DKI Jakarta, Indonesia
1 opening

Feel secure when applying: look for the verified icon and always do your research on a company. Avoid and report situations when employers require payment or work without compensation as part of their application process.

About Tokopedia

Tokopedia is an Indonesian technology company with a mission to democratize commerce through technology. We are the leading marketplace in Indonesia; we encourage millions of merchants and consumers to participate in the future of commerce. Our vision is to build an ecosystem where everyone can start and discover anything with ease. We are holding to these three principles that drive us forward. We call them our DNA, the traits that embody who we are as Tokopedia Nakama: Focus on Consumer, Growth Mindset, and Make it Happen, Make it Better