Application Security (AppSec) Specialist

Mynt Labs development team is seeking a highly skilled Application Security Specialist to join our team in Bahrain. In this key position, you'll support the security of our software development, spanning both back-end infrastructure and front-end user interfaces. If you have a passion for building secure, scalable, high-performance systems and a knack for cyber security, we want to hear from you.

Key Responsibilities

This is a hands-on technical cyber security role that requires knowledge of technical and organizational controls. Responsibilities include conducting vulnerability assessments, penetration testing, application security assessments and cloud security testing to help ensure Mynt Lab’s cyber security:

• Threat Modeling, analyze potential threats and design secure product architectures.
• Conduct regular vulnerability scans tests by using industry leading offensive security tools and methodologies to detect weaknesses and security issues in our developed software products.
• Analyze vulnerability scan results and prioritize remediation efforts using standard risk assessment methodologies to ensure operationally feasible vulnerability closure.
• Work with R&D/Engineering to integrate security into the product development lifecycle (SDLC).
• Develop and execute penetration testing plans using an agreed calendar of events to ensure that systems and applications are adequately covered during the tests.
• Report vulnerability findings to management by presenting them in a readable format to ascertain the risk to the organization.
• Simulate advanced persistent threats via red teaming exercises to test security defenses using leading offensive methods to identify and exploit security weaknesses and provide recommendations to improve security posture.
• Research of AI Models security and attack techniques.

Knowledge Skills and Experience

• Minimum 2 years of job-related experience with offensive security, similar experience as a software developer is a plus.
• Red Teaming to identify weaknesses in the organization's products and/or processes
• Vulnerability Scanning to ensure compliance with security standards Security Auditing of configurations and/or systems
• Advanced capabilities on Application Security and technologies thereof
• Advanced capabilities on Network Security and technologies there of Cloud Security Infrastructure and application penetration testing
• Certifications that are considered as a plus:SANS GIAC Certified Web Application Defender (GWEB), Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), GIAC Penetration Tester (GPEN)

What We Offer

• Competitive salary and benefits package.
• Opportunity to work on innovative AI technologies.
• A collaborative, innovative, and fast-paced work environment.
• Continuous learning and professional development opportunities.
• The chance to make a significant impact on our products and company.

Job Types: Full-time, Permanent

Ability to commute/relocate:

• Manama: Reliably commute or willing to relocate with an employer-provided relocation package (Required)

Application Question(s):

• Do you have hands on experience working as an offensive security/penetration tester conducting software and API security testing? Please explain.

Location:

• Manama (Preferred)