Job Description

Closing Date: 2025-11-14
Job Type: Contract
Job Level: Skilled
Experience: Between 3 - 5 Years
EE/AA: Yes
Summary
Are you passionate about building secure systems and protecting digital platforms from evolving threats? A hybrid long term contract opportunity exists for experienced Application/Platform Security Engineers from Mid to Senior Level. In this role, you'll help design, implement, and maintain security solutions that safeguard our applications, infrastructure, and data -- enabling secure innovation across a large business.
Description

• Design and implement secure architecture for applications and platforms.
• Conduct vulnerability assessments, code reviews, and penetration testing.
• Collaborate with development and DevOps teams to embed security into CI/CD pipelines.
• Monitor and respond to security incidents, ensuring timely resolution and documentation.
• Maintain threat models and risk assessments for critical systems.
• Support or lead security audits and compliance initiatives (e.g., ISO 27001, SOC 2).
• Evaluate and integrate security tools and technologies to enhance platform resilience.
• Mentor junior engineers and contribute to security best practices and governance.
• For the specialist role - experience in training stakeholders in security measures is required

Minimum Requirements

• National Diploma or Degree in ICT
• Security Certification* in AWS or Microsoft or Oracle
• Years of experience required - 4(mid-level) to 6(Senior/Specialist) years of experience in Platform/Application Security

Preferred:

• Strong understanding of secure coding practices, example - OWASP Top 10, and SDLC.
• Hands-on experience with security tools (e.g., SAST, DAST, SIEM, container security).
• Familiarity with cloud platforms (AWS, Azure, GCP) and infrastructure-as-code.
• Experience with scripting or automation (e.g., Python, Bash, PowerShell).
• Knowledge of identity and access management, API security, and secrets management.
• Certifications such as CISSP, OSCP, CEH, or equivalent.
• Experience with zero trust architecture or runtime protection.
• Exposure to Agile/Scrum environments and DevSecOps practices.

Skills Required