Application Security Testing Engineer, Hemel Hempstead
Client: BSI
Location: Hemel Hempstead, United Kingdom
EU work permit required: Yes
Job Reference: 33d6566af22f
Job Views: 74
Posted: 18.02.2025
Expiry Date: 04.04.2025
Job Description:
Great that you're thinking about a career with BSI!
Job Title: Application Security Test Engineer
Location: Hemel Hempstead / Hybrid
BSI has a fantastic career opportunity for an individual looking to undertake a rewarding career within the cyber security regulatory industry.
Our testing teams are responsible for testing a wide range of products to ensure they meet stringent security standards and certification requirements. In this role, you will have the opportunity to test products from our global clients, including big tech.
Working within the regulatory landscape, you will also have the opportunity to keep abreast of the latest regulatory requirements, develop your expertise, and research new testing techniques to further expand our testing capabilities.
As our Application Security Test Engineer, you will be responsible for testing client mobile and web software applications in accordance with OWASP (ASVS/MASVS) frameworks. To be successful in this role, you’ll need to understand web application vulnerabilities and black-box/white-box testing techniques.
Responsibilities:
1. Perform product testing of software applications (Web & Mobile).
2. Assist in maintaining and improving testing techniques for the IoT and Digital Apps laboratory.
3. Research and identify new potential test equipment/software tools for the IoT laboratory and Digital Apps laboratory.
4. Provide technical assistance to BSI customers during any potential testing and certification journey.
5. Manage and own all assigned test projects to ensure that agreed timelines are met for the testing of samples.
6. Prepare Test Reports for clients and deliver on time as agreed in the Operational Plan.
7. Lead project, assessment and/or evaluation teams as required.
8. Proactively identify and represent BSI’s interests with external bodies (e.g., industry associations, standards committees, and notified body working groups).
9. Proactively identify new and/or amended product standards/directives and ensure BSI’s testing schemes are kept up to date and relevant to current market needs.
10. Work with Compliance and Risk team to ensure that the specific products offered by BSI meet all regulatory requirements.
11. Attend trade shows and relevant technical committee meetings, with occasional overseas travel.
To be successful in the role, you will have:
1. Knowledge of web application security principles, standards, and best practices, such as the OWASP Top 10, OWASP Mobile Application Security Verification Standard (MASVS), and OWASP Application Security Verification Standard (ASVS).
2. Experience in performing security testing of web/mobile applications and web services, using both manual and automated tools.
3. Familiarity with web application development frameworks, such as Django, Rails, Spring, or ASP.NET, and web technologies, such as HTML, CSS, XML, JSON, or REST.
4. Ability to write clear and concise reports, documenting the parameters, conditions, and outcomes of testing activities.
5. Understanding business requirements and applying security without adversely affecting the desired functionality.
6. Experience in performing manual code reviews, open-source software evaluations, and tests as needed.
7. Previous experience in the Testing, Inspection and Certification (TIC) sector would be preferred.
8. Relevant degree such as bachelor’s or master’s degree in computer science, Engineering, Information Security, Technical, Information Technology, Management, Science, Architecture, or Technology.
9. High level of interpersonal skills with the proven ability to communicate and influence effectively at all levels.
10. Organized, efficient, and methodical in approach, with high attention to detail.
11. Proven experience of managing projects and its resources.
12. Ability to solve problems proactively.
13. Candidates must hold full rights to work & remain in the UK as sponsorship is not available for this position.
BSI offers a competitive total reward package, an independent and varied job in an international environment, flexible working hours, ongoing training and development with the inclusion of Annual Bonus, Contribution Based Pension, Private Healthcare, 27 Days Annual Leave + Bank Holidays, and Life Assurance.
If you want to contribute to this inspiring challenge, bring your open and enthusiastic mindset to our dynamic team, apply now and become part of the BSI family!
D&I Policy
BSI is committed to ensuring the diversity of our workforce reflects that of our clients and the communities in which we operate. Our goal is to create a sense of belonging for all employees by providing opportunities to develop, grow, and engage with our global organization.
If you require any reasonable accommodations to be made on account of a disability or impairment throughout our recruiting process, please inform your Talent Acquisition Partner.
#J-18808-Ljbffr