Talent.com
Application Security Specialist

Application Security Specialist

bpKuala Lumpur, Kuala Lumpur, Malaysia
6 jam yang lalu
Penerangan pekerjaan

Overview

bp Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

Join to apply for the Application Security Specialist role at bp

This team drives the response and management of cyber incidents, using an intelligence‑led approach for identification, mitigation, and rapid response to safeguard bp on a global scale. By applying lessons learned and data analytics, they establish engineering principles and enhance the technology stack to continuously bolster bp's cybersecurity posture.

Responsibilities

  • Provide technical expertise in support of information security and risk activities specific to the specialism to achieve objectives e.g. designing and developing security solutions to work across bp’s digital environments that are consistent with current policies.
  • Maintain and improve API security controls and practices across the SDLC to help software engineering teams create products secure by design.
  • Perform security reviews of API designs, specifications (e.g. Open API / Swagger), and source code to identify and remediate vulnerabilities.
  • Develop and promote guidelines for secure API and cloud‑native applications.
  • Maintain systems that are designed to uncover code vulnerabilities and provide remediation insights.
  • Integrate security processes, including threat modeling.
  • Collaborate with DevOps / CI / CD teams to shift left on security : integrate API security testing (static & dynamic), automated vulnerability scanning, and policy enforcement into the pipeline.
  • Enforce secure design patterns for APIs (including REST, SOAP) and advocate for least privilege, data minimization, segmentation of access.
  • Deliver the implementation and application of relevant operating processes and procedures, and ensure all activities adhere to the relevant standards.
  • Monitor and maintain logging, alerting, and telemetry for APIs; respond to incidents, API misuse, and anomalous behavior.
  • Create and maintain API security standards, policies, and guidelines.
  • Evolve the security roadmap to meet anticipated future requirements and needs.
  • Create and articulate materials on how to embed and measure security throughout the software and platform development lifecycle.
  • Develop and maintain a series of internal and external collaborator relationships, delivering advanced technical knowledge to support project delivery, cooperatively identify key challenges and ensure that security solutions successfully protect bp against cyber risks.

Qualifications

  • Seasoned security professional with 5+ years delivering security engineering services and / or building security solutions within a complex organization with hands‑on experience in application security, API security or related field is preferred.
  • Firm foundation of information and cyber security principles and standard processes.
  • Solid knowledge in application security concepts (OWASP Top 10, secure coding best practices, common vulnerabilities, etc).
  • Experience with API Gateways & related tooling (e.g. AWS API Gateway, Azure API Management)
  • Proficiency in security testing tools such as Postman, Insomnia
  • Familiarity with secure coding practices and API specification review (OpenAPI / Swagger).
  • Professional and technical security certifications such as CISSP, CISM, GEVA, CEH, OSCP or equivalent are a plus.
  • Development experience in one or more object‑oriented programming languages (e.g., Python, Scala, Java, C#) and / or cloud environments (including AWS, Azure, Alibaba, etc.)
  • Familiarity with containerization, microservices architecture, and orchestration tools (Kubernetes)
  • Practical experience with code scanning tools (SAST, DAST, SCA)
  • Experience with CI / CD pipelines and DevSecOps tools to automate security checks and integrate them into the development workflow.
  • Operational proficiency in frameworks such as CIS CSC, NIST CSF, NIST 800‑53, ISO 27001, etc.
  • Strong analytical skills such as having ability to interpret scan reports and produce actionable remediation plans.
  • Excellent communication skills; able to explain technical risks to non‑technical stakeholders.
  • Foundational knowledge of security standards, industry laws, and regulations such as Payment Card Industry Data Security Standards (PCI‑DSS), General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA) and Sarbanes‑Oxley (SOX)
  • Continuous learning and improvement approach.

    • About bp

    bp is a global energy business with a purpose to reimagine energy for people and our planet. We aim to be a very different kind of energy company by 2030, helping the world reach net zero and improving people’s lives. We are committed to creating a diverse and inclusive environment where everyone can grow and succeed. Join bp and become part of the team building our future!

    Accommodation

    We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

    Seniority level

    Mid‑Senior level

    Employment type

    Full‑time

    Job function

    Information Technology

    Industries

    Oil and Gas

    #J-18808-Ljbffr

    Buat amaran kerja untuk carian ini

    Application Specialist • Kuala Lumpur, Kuala Lumpur, Malaysia

    Pekerjaan berkaitan
    • Dinaikkan pangkat
    Security Specialist

    Security Specialist

    Advanced Micro DevicesCyberjaya, Selangor, Malaysia
    WHAT YOU DO AT AMD CHANGES EVERYTHING.At AMD, our mission is to build great products that accelerate next-generation computing experiences – from AI and data centers, to PCs, gaming and embedded sy...Tunjukkan lagiKemas kini terakhir: 30+ hari yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Operational Security Management Specialist

    Operational Security Management Specialist

    BP PLCSubang Jaya, Selangor, Malaysia
    Operational Security Management Specialist page is loaded## Operational Security Management Specialistremote type : This position is a hybrid of office / remote workinglocations : Malaysia - Kuala ...Tunjukkan lagiKemas kini terakhir: 8 jam yang lalu
    • Dinaikkan pangkat
    HSE Specialist – Project Support

    HSE Specialist – Project Support

    Baker HughesKlang Municipal Council, Klang Municipal Council, Malaysia
    Baker Hughes Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.We are seeking a detail-oriented and proactive.Health, Safety, and Environmental (HSE) initiatives. This role will deliver both...Tunjukkan lagiKemas kini terakhir: 3 hari yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Authorized Service Provider (ASP) Operations Program Manager (Remote role)

    Authorized Service Provider (ASP) Operations Program Manager (Remote role)

    Hitachi Vantara CorporationSelayang Municipal Council, Selayang Municipal Council, Malaysia
    Job Title : Authorized Service Provider (ASP) Operations Program Manager.Onboard new Authorized Service Providers, ensuring compliance with all policies, standards, and procedures; qualify and valid...Tunjukkan lagiKemas kini terakhir: 8 jam yang lalu
    • Dinaikkan pangkat
    Senior Engineer, Supplier Quality (Based in Malaysia, 1 year WFH contract)

    Senior Engineer, Supplier Quality (Based in Malaysia, 1 year WFH contract)

    PCISeremban, Negeri Sembilan, Malaysia
    Senior Engineer, Supplier Quality (Based in Malaysia, 1 year WFH contract).PCI Private Limited is looking for an experienced Senior Engineer, Supplier Quality to join our Quality Assurance departme...Tunjukkan lagiKemas kini terakhir: 7 hari yang lalu
    • Dinaikkan pangkat
    Senior Software Engineer – Full Time - Remote

    Senior Software Engineer – Full Time - Remote

    The FlexKuala Selangor, Kuala Selangor, Malaysia
    Senior Software Engineer – Full Time - Remote.Location : The Flex Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia. Join the team reinventing how the world rents.At The Flex, we believe rent...Tunjukkan lagiKemas kini terakhir: 6 hari yang lalu
    • Dinaikkan pangkat
    Information Security Assessor – QSA Certified (W2, FT)

    Information Security Assessor – QSA Certified (W2, FT)

    RSI SecurityShah Alam, Shah Alam, Malaysia
    WE ARE HIRING : Information Security Assessor – QSA Certified.Competitive salary + commission eligibility.Potential travel to client sites as required. RSI Security is a trusted leader in cybersecuri...Tunjukkan lagiKemas kini terakhir: 4 hari yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Security Operations Specialist (Vulnerability Management)

    Security Operations Specialist (Vulnerability Management)

    AXA Group OperationsPuchong, Selangor, Malaysia
    Security Operations Specialist (Vulnerability Management).Be among the first 25 applicants.Direct message the job poster from AXA Group Operations. As a world-leading insurance company, we act for h...Tunjukkan lagiKemas kini terakhir: 8 jam yang lalu
    • Dinaikkan pangkat
    Engineer, Workplace IT Security

    Engineer, Workplace IT Security

    Singtel GroupKuala Lumpur, Kuala Lumpur, Malaysia
    Workplace IT Security Engineer.Workplace IT security solutions.The key focus is to develop security related workflows, process and automation procedures. He / She should be able to proactively identi...Tunjukkan lagiKemas kini terakhir: 30+ hari yang lalu
    Official Game Host

    Official Game Host

    Stranger SoccerPort Klang, Selangor, MY
    Quick Apply
    Males and Females welcome .Calling all truly AWESOME people! .Singapore-based company experiencing explosive growth.In a few short years, after launching a revolutionary platform and Mob...Tunjukkan lagiKemas kini terakhir: 5 hari yang lalu
    • Dinaikkan pangkat
    Utilities Engineer

    Utilities Engineer

    LonzaBanting, Selangor, Malaysia
    Today, Lonza is a global leader in life sciences operating across five continents.While we work in science, there’s no magic formula to how we do it. Our greatest scientific solution is dedicated in...Tunjukkan lagiKemas kini terakhir: 13 hari yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Security Operations Specialist (Security Incident Response)

    Security Operations Specialist (Security Incident Response)

    AXA Group OperationsPuchong, Selangor, Malaysia
    Security Operations Specialist (Security Incident Response).Security Operations Specialist (Security Incident Response).As a world‑leading insurance company, we act for human progress by protecting...Tunjukkan lagiKemas kini terakhir: 8 jam yang lalu
    • Dinaikkan pangkat
    Security Solution Lead

    Security Solution Lead

    AFFIN GroupCyberjaya, Selangor, Malaysia
    Create your future with Affin! You too can make a difference.Join us at AFFIN, where the open minds meet and be inspired by a shared commitment to great work. Here, you don’t just stay at the forefr...Tunjukkan lagiKemas kini terakhir: 30+ hari yang lalu
    • Dinaikkan pangkat
    Security Incident Analyst (Level 2)

    Security Incident Analyst (Level 2)

    Johnson MattheyKuala Lumpur, Kuala Lumpur, Malaysia
    Security Incident Analyst (Level 2) page is loaded## Security Incident Analyst (Level 2)locations : Kuala Lumpur - MYtime type : Vollzeitposted on : Vor 4 Tagen ausgeschriebenjob requisition id : ...Tunjukkan lagiKemas kini terakhir: 30+ hari yang lalu
    Facilities Process Specialist (Compliance & Risk) Based in Sedenak, )

    Facilities Process Specialist (Compliance & Risk) Based in Sedenak, )

    Kuok (Singapore) LimitedJohor, 01, MY
    This position is for K2 Data Centres, a company under Kuok (Singapore) Limited, based in Johor, Malaysia.K2 is seeking a Facilities Process Specialist to manage and service our data centre infrastr...Tunjukkan lagiKemas kini terakhir: 30+ hari yang lalu
    • Dinaikkan pangkat
    Implementation Specialist

    Implementation Specialist

    2XKuala Selangor, Kuala Selangor, Malaysia
    With over 2,700 clients served globally, we are a US-based, remote-first team of specialists and a partner of choice for top RevTech platform providers and RevOps leaders globally.We deliver implem...Tunjukkan lagiKemas kini terakhir: 30+ hari yang lalu
    • Dinaikkan pangkat
    Director of Finance Strategy, Trilogy (Remote) - $400,000 / year USD

    Director of Finance Strategy, Trilogy (Remote) - $400,000 / year USD

    TrilogySepang, Selangor, Malaysia
    Director of Finance Strategy, Trilogy (Remote) - $400,000 / year USD.Apply for the Director of Finance Strategy, Trilogy (Remote) role at Trilogy. Compensation is $200 / hour ($400k / year) with weekly pa...Tunjukkan lagiKemas kini terakhir: 30+ hari yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Site Safety Supervisor - Data Centre

    Site Safety Supervisor - Data Centre

    Woh Hup Malaysia Sdn BhdSungai Buloh, Selangor, Malaysia
    Wah Hup Malaysia (WHM) is a main contractor specialising in data centre technology, partnering with internationally recognised industry leaders to deliver comprehensive, end-to-end solutions spanni...Tunjukkan lagiKemas kini terakhir: 8 jam yang lalu