Application Security Testing Engineer, Hemel Hempstead
Client: BSI
Location: Hemel Hempstead, United Kingdom
EU work permit required: Yes
Job Reference: 33d6566af22f
Job Views: 102
Posted: 14.03.2025
Expiry Date: 28.04.2025
Job Description:
Great that you're thinking about a career with BSI!
Job Title: Application Security Test Engineer
Location: Hemel Hempstead / Hybrid
BSI has a fantastic career opportunity for an individual looking to undertake a rewarding career within the cyber security regulatory industry.
Our testing teams are responsible for testing a wide range of products to ensure they meet stringent security standards and certification requirements. In this role, you will have the opportunity to test a wide range of products from our global clients, including big tech.
Working within the regulatory landscape, you will also have the opportunity to keep abreast of the latest regulatory requirements, develop your expertise, and research new testing techniques to further expand our testing capabilities.
As our Application Security Test Engineer, you will be responsible for testing client mobile and web software applications in accordance with OWASP (ASVS/MASVS) frameworks. To be successful in this role, you’ll need to have an understanding of web application vulnerabilities and black-box/white-box testing techniques.
Responsibilities:
1. Perform product testing of software applications (Web & Mobile).
2. Assist in maintaining and improving testing techniques for the IoT and Digital Apps laboratory.
3. Research and identify new potential test equipment/software tools for the IoT laboratory and Digital Apps laboratory.
4. Provide technical assistance to BSI customers during any potential testing and certification journey.
5. Manage and own all assigned test projects to ensure that agreed timelines are met for the testing of samples.
6. Prepare Test Reports for clients and deliver on time as agreed in Operational Plan.
7. Lead project, assessment, and/or evaluation teams as required.
8. Proactively identify and represent BSI’s interests with external bodies (e.g., industry associations, standards committees, and notified body working groups).
9. Proactively identify new and/or amended product standards/directives and ensure BSI’s testing schemes are kept up to date and relevant to current market needs.
10. Work with Compliance and Risk team to ensure that the specific products offered in this area by BSI meet all regulatory requirements.
11. Attend trade shows and relevant technical committee meetings; occasional overseas travel may be required.
Qualifications:
1. Knowledge of web application security principles, standards, and best practices, such as the OWASP Top 10, the OWASP Mobile Application Security Verification Standard (MASVS), and the OWASP Application Security Verification Standard (ASVS).
2. Experience in performing security testing of web/mobile applications and web services, using both manual and automated tools.
3. Familiarity with web application development frameworks, such as Django, Rails, Spring, or ASP.NET, and web technologies, such as HTML, CSS, XML, JSON, or REST.
4. Ability to write clear and concise reports, documenting the parameters, conditions, and outcomes of testing activities.
5. Understanding of business requirements and applying security without adversely affecting the desired functionality.
6. Experience in manual code reviews, open-source software evaluations, and testing as needed.
7. Previous experience in the Testing, Inspection and Certification (TIC) sector is preferred.
8. Relevant degree such as bachelor’s or master’s in computer science, Engineering, Information Security, Technical, Information Technology, Management, Science, Architecture, or Technology.
9. High level of interpersonal skills with the proven ability to communicate and influence effectively at all levels.
10. Organized, efficient, and methodical in approach, with high attention to detail.
11. Proven experience in managing projects and its resources.
12. Ability to solve problems proactively.
13. Candidates must hold full rights to work & remain in the UK as sponsorship is not available for this position.
BSI offers a competitive total reward package, an independent and varied job in an international environment, flexible working hours, ongoing training and development, including an Annual Bonus, Contribution Based Pension, Private Healthcare, 27 Days Annual Leave + Bank Holidays, and Life Assurance.
If you want to contribute to this inspiring challenge, bring your open and enthusiastic mindset to our dynamic team, apply now and become part of the BSI family!
#J-18808-Ljbffr