Security Engineer

Appier in Taipei, Taiwan

About Appier

Appier is a software-as-a-service (SaaS) company that uses artificial intelligence (AI) to power business decision-making. Founded in 2012 with a vision of democratizing AI, Appier’s mission is turning AI into ROI by making software intelligent. Appier now has 17 offices across APAC, Europe and U.S., and is listed on the Tokyo Stock Exchange (Ticker number: 4180). Visit www.appier.com for more information.

About the role

[The seniority/title is determined by job-related skills, experience, and evaluation after the interview.]

We are seeking a Blue Team Security Engineer with experience to join our growing tech team to help Appier fortify our defenses and protect the system that enables our products to keep running while processing the data of our clients.

In this role, you will design and implement the security defenses. You will interact with our infra team, product team, and MIS team. As a member of the Infosec team, you will also contribute to the ISMS program and the organization's compliance with the overarching security and regulatory requirements(ISO27001, ISO27701, GDPR, etc.).

Responsibilities

  • Implement Vulnerability scanning tools and code scanning
  • Penetration test with the product team
  • Analyze security system and seek improvements continuously
  • Report possible threats or software issues, and support the product teams to manage the issues
  • Research weakness and find ways to enhance the security defenses
  • Develop best practices and security standards for the organization
  • Support ISO27001, ISO27701. GDPR compliance
  • Information security training

About you

[Minimum qualifications]

  • Bachelor degree or above in computer engineering/computer science or related fields
  • 2 or more years of work experience as a security engineer
  • Familiar with OWASP top 10 web application security risks and defenses
  • Tools hands-on experience for vulnerability scanning, penetration test, or code scanning
  • Familiar with cloud service and Linux system
  • Ability to use a wide variety of open source technologies

[Preferred qualifications]

  • Have experience importing ISO27001
  • Have web or mobile application development experience
  • Familiar with programing language (Python, Java, Javascript, etc.)
  • Have information security certificate (CEH, CISSP, OSCP, GWAPT, etc.)
Apply