Application Security Engineer Intern

Bachelor's degree in Computer Science, Information Systems or specialized training/certification
Experience in application security, preferably a software security role
Expertise with browser security controls (CSP, XFO, HSTS), web application security topics such as OWASP Top 10, and authentication infrastructure (SAML, OAUTH)
Experience building tools and processes to reliably identify security issues such as SQL injection, XSS, CSRF, and business logic flaws across large code bases
Must be familiar with Cyber Security Tools, network topologies, intrusion detection, PKI, and secured networks
A grade of B+ and above in KCSE (or equivalent) with good grades in math and languages
Knowledge and/or experience with threat analysis and penetration testing methodologies and tooling
Knowledge of at least one programming language, web application technologies and frameworks is an added advantage
Knowledge of security issues affecting Internet-facing applications
Knowledge of cloud infrastructure and UNIX/Linux environments

Responsibilities

Perform static code analysis (SCA) on applications to identify vulnerabilities and report to software engineers for fixing
Set up and monitor applications for intrusion detection and protect applications against common vulnerabilities
Secure application infrastructure (servers and databases) against intrusion, ensuring they’re regularly patched against known vulnerabilities
Manage vulnerability reporting in all applications and systems, including open source software that the applications run on
Perform analysis of all security systems log files, review and keep track of triggered events, research current and future cyber threats, reconcile correlated cyber security events, develop and modify new and current cyber security correlation rule sets, and operate security equipment and technology
Perform software testing (patches, other updates)
Tracking and reporting vulnerabilities in server software by using tools such as CVE
Preparation of Weekly reporting of common vulnerabilities that affect our environment, as reported on various platforms (CVE etc.) and their mitigations
Ensuring that the Web infrastructure is monitored and actively protecting applications from common vectors
Monitoring servers for intrusion and performance
Ensuring all server software is updated and security patches applied regularly
Manage vulnerability reporting in all applications and systems, including open source software that the applications run on
Weekly tracking of all issues raised from penetration testing, vulnerability assessment and static/dynamic scans
Any other duties as may be assigned from time to time

Start hiring with Fuzu

Recruit better talent faster - on your own or with our support.

Explore recruitment platform

Job search tips from Fuzu

Selected articles on cover letters, CV structure, and interview preparation.

Information technology, software development, data Jobs for Entry and Basic-level in Africa

Application Security Engineer Intern

Software Engineer - Go - Container Images

Freelance Software Developer/DevOps Engineer

NOC Engineer

Enterprise Architect, Developer Productivity

Graduate Trainee - Quality Assurance

Hardware Quality Assurance Officer, Abuja

Mobile Security Technician

Support Desk Agent

Specialist - Enterprise Cloud Solutions Architect

Top cities with open vacancies

Companies hiring now

Country / Region

Profession (Entry and Basic-level)

Industry (Information technology, software development, data, Entry and Basic-level)

Seniority (Information technology, software development, data)

Fuzu

Application Security Engineer Intern

Job details

Description

Responsibilities

Tags

Start hiring with Fuzu

Job search tips from Fuzu