Job Description In your new role you will: Perform comprehensive application security assessments incl.
threat modeling to identify potential vulnerabilities and recommend mitigation strategies; Provide guidance on secure coding practices and help remediate identified vulnerabilities; Collaborate with internal stakeholders to integrate security best practices into the software development lifecycle; Manage projects of a global scale Provide consultancy services on a wide variety of projects focusing on applications and information systems; Draft reports and presentations to communicate findings and recommendations to technical and non-technical stakeholders.
Your Profile You are best equipped for this task if you have: Master or Bachelor degree in Computer Science, Information Technology, Engineering or equivalent field of studies; Experience in cybersecurity and risk assessments, preferably in roles such as security analyst, security engineer, or security consultant; Familiarity with OWASP Top 10, SANS CWE Top 25; Knowledge of vulnerabilities related to input validation, authentication, authorization, and data handling; Experience integrating security testing into CI/CD pipelines using tools like Jenkins, GitHub Actions or GitLab CI; Understanding of cloud platforms (AWS, Azure) and their security configurations; Knowledge of API security principles, including OAuth, API Gateway and JWT tokens; Knowledge of programming languages (e.g., Java, Python, C#, JavaScript) and secure coding principles; Professional security certifications such as CISSP, CSSLP, GWEB, CEH, OSCP, GWAPT; Experience with security testing tools such as Burp Suite, OWASP ZAP, Checkmarks, Veracode, or similar is a plus; Technical expertise, conceptional thinking, strong analytical skills, and a deep understanding of cyber security principles to assess and improve cyber security effectively; Strong communication and presentation skills; A high degree of self-initiative and fostering a service-oriented approach towards internal customers; Fluency English Our offer in Malacca Wide range of training offers & planning of career development International assignments Different career paths: Project Management, Technical Ladder, Management & Individual Contributor Exempt working hours are flexible within core hours (9am-12pm & 2pm- 5.15pm) Home office options for certain tasks or due to personal circumstances.
Applicable to exempt employees working on office hours only.
Part-time work possible for exempt employees only.
Exempt staff could apply up to 3-month sabbatical leave, subject to business situation Medical coverage In-house clinic operates 24 hours, doctor consultation possible from 9am to 5pm.
Health promotion programs Social Recreation Center with facilities, such as gym room, squash, badminton and netball court, zumba and yoga classes, etc.
On-site Cafeteria Paid sick leave according to law Additional 3% to Employee Provident Fund after 10 years service with Infineon Malacca.
Re-employment opportunities Productivity incentive bonus Bus service for shift employees Allocated carpark for disabled and pregnant employees #WeAreIn for driving decarbonization and digitalization.
As a global leader in semiconductor solutions in power systems and IoT, Infineon enables game-changing solutions for green and efficient energy, clean and safe mobility, as well as smart and secure IoT.
Together, we drive innovation and customer success, while caring for our people and empowering them to reach ambitious goals.
Be a part of making life easier, safer and greener.
Are you in?
We are on a journey to create the best Infineon for everyone.
This means we embrace diversity and inclusion and welcome everyone for who they are.
At Infineon, we offer a working environment characterized by trust, openness, respect and tolerance and are committed to give all applicants and employees equal opportunities.
We base our recruiting decisions on the applicant´s experience and skills.
Please let your recruiter know if they need to pay special attention to something in order to enable your participation in the interview process.