Application Security Engineer

We are seeking a hands-on Application Security Engineer with strong AWS and full-stack development experience (Python/Django & React) to secure, build, and enhance our cloud-native applications. You will play a critical role in embedding security throughout the SDLC, conducting security assessments, and collaborating closely with engineering teams to design secure, scalable APIs and modern web applications.

• Job Type: Contract
• Salary Package: Up to 9,500 (basic) + AWS

Key Responsibilities

• Implement and maintain application security controls across cloud-native systems running on AWS.
• Conduct secure code reviews, threat modelling, and vulnerability assessments for APIs, backend services, and front-end applications.
• Develop and maintain secure, high-quality backend services using Python/Django and RESTful APIs.
• Build responsive, user-centric front-end interfaces using
• Automate security testing and integrate AppSec practices into CI/CD pipelines.
• Collaborate with developers to remediate security issues and ensure adherence to best practices.
• Design and implement IAM policies, encryption strategies, and security monitoring on AWS.
• Support incident response, security investigations, and compliance-related activities.

Requirements

• Strong experience in Application Security, including OWASP, vulnerability management, and secure SDLC.
• Proficiency in AWS services (IAM, Lambda, API Gateway, S3, CloudFront, DynamoDB, RDS, ECS/EKS preferred).
• Hands-on development skills in:
• Python/Django for backend and API development
• for front-end development
• Experience with CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins).
• Knowledge of API authentication/authorization (JWT, OAuth2, Cognito).
• Familiarity with DevSecOps tools (Snyk, SonarQube, Burp Suite, Trivy, Prisma Cloud, etc.).
• Strong understanding of cloud and application architecture security.

Nice to Have

• Experience with microservices and serverless architectures.
• Container security knowledge (Docker, Kubernetes).
• Certifications such as AWS Security Specialty, CISSP, GIAC, or OSCP.

Why Join Us?

• Opportunity to build secure applications end-to-end.
• Collaborative engineering culture with strong innovation focus.
• Continuous learning and certification support.

By submitting your resume, you consent to the collection, use, and disclosure of your personal information per ScienTec's Privacy Policy ).

This authorizes us to:

• Contact you about potential opportunities.
• Delete personal data as it is not required at this application stage.

All applications will be processed with strict confidence. Only shortlisted candidates will be contacted.

Elane Yap Theng Yu- R
ScienTec Consulting Pte Ltd - 11C5781