Junior Security Engineer in Global asset

Position: Junior Security Engineer
Job Overview:We are looking for a highly motivated and proactive Junior Security Engineer to join our security team. In this role, you will be responsible for assisting with codebase vulnerability scanning, reporting security issues, and maintaining security documentation. This is a great opportunity for someone who wants to develop their career in cybersecurity while learning practical skills and contributing to the security of our systems.
Essential Responsibilities:
Vulnerability Scanning and Analysis:
Help perform codebase scanning using tools such as SonarQube, npm audit, and OWASP Dependency-Check to identify vulnerabilities. 
Help identify and analyze vulnerabilities in third-party libraries and frameworks.
Collaborate with senior engineers to review scan results and prioritize critical security fixes.
Reporting and Tracking:
Create and manage vulnerability reports in Jira or Taiga.
Track security issues and track their resolution, ensuring timely remediation of vulnerabilities.Provide regular updates on security review progress and outstanding issues.
< u>Security Documentation:
Assist in creating and maintaining security policies, procedures, and best practice documentation.Help create and update technical security manuals for developers and team members.Contribute to the development of an internal knowledge base on common vulnerabilities and security best practices.
Security awareness and testing:
Support the development and implementation of employee security tests.
Assist in security training and simulations, such as phishing exercises.
Help create internal security quizzes and workshops to educate employees on security best practices.
Code Audits:
Assist with manual and automated code reviews to identify potential security issues.
Collaborate with senior engineers to ensure compliance with secure coding policies.Learn how to identify security holes and propose security improvements.
Security tools and technologies:
Learn and apply new security tools and technologies for vulnerability scanning and monitoring. Assist in automating security scanning and reporting workflows.Stay abreast of the latest security trends and threats, contributing to ongoing security efforts.
Skills and Qualifications Required:
Some experience with security scanning tools such as SonarQube, npm audit or OWASP tools.
Basic knowledge of vulnerability management and secure coding practices.
Familiarity with Jira, Taiga or similar project management tools for issue tracking .
Understanding of npm and Node.js environments, especially regarding package vulnerabilities.
Strong interest in cybersecurity and willingness to learn new security concepts and technologies.
Excellent problem solving skills, willingness to take initiative and actively contribute team work.
Strongverbal and written communication skills.
Desired Skills:
Experience or coursework in information security or related field. 
Knowledge of basic penetration testing tools and techniques.
Familiarity with security best practices such as the OWASP Top Ten.
  
Apply today to join our team and help us ensure exceptional customer experience.
Still have questions? All additional information will be gladly provided by the staff of the TG HR department https://t.me/im_your_hr
We are waiting for your CVs!