CrawlJobs Logo

Mid - Senior Cybersecurity Engineer

moneyme.com.au Logo

MONEYME

Location Icon

Location:
Philippines , Manila

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Join the leading AU fintech company as a Senior Cybersecurity Engineer who will be at the forefront of protecting modern, cloud-based systems while shaping security strategy. Deliver hands on technical security across MONEYME’s application, cloud, and delivery environments. This role is application security focused, with strong accountability for secure SDLC, CI/CD security, SAST, DAST, threat modelling, vulnerability remediation, and implementation of high-risk technical controls. You will identify weaknesses through analysis and testing, validate risk with evidence, and work directly with engineering teams to drive effective remediation. The successful candidate will operate across the full application security lifecycle, applying purple teaming practices to continuously improve both preventive and detective controls. You will act as a technical point of contact across offensive and defensive security activities, translate realistic attack paths into remediation actions, validate control effectiveness through targeted testing, and produce defensible technical evidence that supports governance and audit requirements. You will partner closely with the Cybersecurity Lead, who owns overall security strategy.

Job Responsibility:

  • Own application security across web, mobile, and API systems
  • Identify and prioritize vulnerabilities using SAST, DAST, and threat modelling
  • Assess findings against OWASP Top 10 and OWASP API Security risks
  • Drive remediation with engineering teams and validate fixes
  • Embed security into the software development lifecycle
  • Conduct threat modelling during design and architecture
  • Perform security reviews for new features and changes
  • Integrate SAST, DAST, dependency, and container testing into CI CD pipelines
  • Define risk based security gates and tune rulesets
  • Assess high risk flows involving authentication, sensitive data, APIs, and third party integrations
  • Identify risks in token handling, sessions, and API abuse
  • Conduct targeted testing and validate defensive coverage
  • Act as a technical escalation point during application, cloud, and platform security incidents
  • Support detection tuning, logging quality, and threat hunting using application and cloud telemetry
  • Validate security controls across applications, pipelines, cloud services, and identity components
  • Support external scanning and remediation validation

Requirements:

  • Bachelor’s degree in Information Security, Information Technology, or a related discipline
  • Professional certifications such as CEH, OSCP or equivalent are highly regarded
  • Equivalent practical experience may be considered in lieu of formal qualifications
  • 3+ years of experience in cybersecurity engineering experience with strong focus on application security
  • Demonstrated ownership of vulnerability remediation from discovery through validation
  • Practical experience implementing and tuning SAST and DAST programs
  • Strong familiarity with OWASP Top 10 and OWASP API Security Top 10
  • Experience working directly with software engineers and platform teams
  • Experience embedding security into the software development lifecycle
  • Experience operating in regulated or high-risk environments
  • Experience applying adversary driven or purple teaming techniques
  • Strong understanding of web, mobile, and API security vulnerabilities and mitigations
  • Hands on experience with SAST, DAST, and application security testing tools
  • Ability to assess findings against OWASP risk categories and real-world exploitability
  • Practical experience with threat modelling methodologies and secure design reviews
  • Experience integrating security testing into CI CD pipelines
  • Working knowledge of cloud security fundamentals including identity, network exposure, and workload protection
  • Knowledge of secure secret handling, dependency management, and pipeline hardening
  • Understanding of attacker techniques and MITRE ATT&CK
  • Experience validating remediation and preventing vulnerability reintroduction
  • Experience securing applications that process sensitive or regulated data
  • Familiarity with Azure based environments or similar cloud platforms
  • Clear and effective communicator with engineering, offensive, and defensive security teams
  • Comfortable challenging design decisions while remaining solution oriented
  • Strong ownership mindset focused on outcomes rather than findings
  • Ability to prioritise remediation based on risk and impact
  • Calm and methodical approach during production issues or security incidents
  • Commitment to staying current with application security threats, OWASP guidance, and evolving attack techniques
  • Participation in professional development activities such as training, certifications, or security communities
What we offer:
  • HMO on Day 1 + 1 free dependent
  • 15 days of vacation leaves and 15 days of sick leave
  • 1 birthday leave
  • Health and wellbeing initiatives like weekly sports activities and MONEYME Olympics
  • Fun filled company activities - summer outings, team building, team lunch or dinner, Halloween event, year-end party and so much more!
  • Complimentary snacks in the office
  • MONEYME Merchandise - hoodie, T-shirt, tumbler, notebook, and id lace
  • Quarterly champion awards & reward trips

Additional Information:

Job Posted:
January 03, 2026

Work Type:
Hybrid work
Icon
MONEYME - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Mid - Senior Cybersecurity Engineer

Senior Cyber Security Consultant

Join Our Expert Team. We are seeking a skilled Senior Cyber Security Consultant ...
Location
Location
Austria , Vienna
Salary
Salary:
Not provided
alpenite.com Logo
Arsenalia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s degree in Computer Science, Cybersecurity, Engineering or similar fields
  • 6-8 years of experience in senior cybersecurity roles, with at least 3 years in technical leadership positions
  • Solid expertise in enterprise security architectures, zero-trust frameworks, and multi-cloud security (AWS, Azure, GCP)
  • Proven track record in managing enterprise security programs and coordinating incident response teams
  • Strong skills in analyzing advanced threats and designing defense-in-depth strategies
  • Excellent strategic coordination and executive-level communication
  • Fluent in English (C1/C2) with experience in international environments
  • Willingness to travel frequently and lead projects across multiple geographies
  • Strong results orientation, strategic mindset, and continuous innovation drive
Job Responsibility
Job Responsibility
  • Design and implement security solutions for multi-cloud and hybrid environments
  • Lead strategic threat analysis and large-scale vulnerability assessments to shape long-term security planning
  • Manage complex incidents and breaches, coordinating cross-functional teams and engaging with C-level stakeholders
  • Embed security-by-design into digital transformation programs and enterprise architectures
  • Define and apply governance frameworks aligned with international standards (ISO 27001, NIST, SOC2)
  • Build proactive threat intelligence and hunting strategies to stay ahead of emerging risks
  • Mentor junior and mid-level security professionals, fostering a strong security-first mindset
  • Represent Arsenalia in high-level technical and business contexts, acting as a trusted advisor to enterprise clients
What we offer
What we offer
  • Welfare Package: A comprehensive corporate welfare platform, offering a wide range of benefits and healthcare support
  • Worklife Kit: A complete welcome package with all essentials for day-to-day productivity, complemented by comprehensive benefits
  • digital meal vouchers and flexible reimbursement options
  • Empowering People: Engagement initiatives, team building, and mentoring programs
  • Open Space, Open Mind: Modern open-space offices and collaborative areas
  • Career Path: internal Changemaker Path methodology to grow key relational, communication, and leadership skills
  • Learning & Development: Continuous improvement programs, certification opportunities, and incentives
Read More
Arrow Right

Cyber-Security Technical Administrator

This position is for a Cybersecurity Technical Administrator supporting the ALTE...
Location
Location
United States , Alexandria
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Mid to senior level Cybersecurity Technical Administrator experience in a cloud environment
  • DoD 8570.01-M IAT level II certification is required
  • Resource must possess both Baseline and Computing Environment certification as defined in DoD Instruction 8570.01-M
  • Strong verbal and written communication skills
  • Understanding of DOD Risk Management Framework Assessment & Authorization (RMF A&A), FedRAMP, the DOD cloud provisional authorization (PA) process and the processes to successfully acquire and maintain an Authorization to Operate (ATO)
  • Working knowledge of the Federal Risk and Authorization Management Process (FedRAMP), cloud security information impact levels (IL), the differences between an ATO and P-ATO, the differences between a CSO and CSP, and the processes to successfully acquire, maintain and support DOD cloud accreditation
  • Experience automating routine administrative tasks desired
  • Understanding of network, storage, server and application technologies
  • Strong understanding of common cyber threat patterns, indicators of compromise and defenses
  • Working knowledge of DoD STIGs and IA Vulnerability Management (IAVM)
Job Responsibility
Job Responsibility
  • Serve as overall subject matter expert on Cybersecurity Technical Administrator technology and market capabilities/trends
  • Conduct security scans against the organization’s cloud-deployed infrastructure, produce and interpret compliance reports
  • Validate technical security controls are in place for operating systems, applications and network appliances, and recommend enhancements
  • Review proposed configuration changes for security impact
  • Operate endpoint-protection mechanisms, including high-level reporting and day-to-day administration activities
  • Work between technical and policy teams to implement, maintain and monitor technical security configuration controls, including: STIG’s, SRG’s and other industry security hardening guidance
  • Work between technical and policy teams to successfully implement and manage requirements for maintaining cloud P-ATO, ATO and security control inheritance capabilities
  • Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements
  • Use results of vulnerability scans to determine vulnerabilities and develop operational plans to remediate or mitigate vulnerabilities as they are discovered
  • Install, operate and maintain Army Endpoint Security System
Read More
Arrow Right

Cyber-Security Policy Administrator

This position is for a Cybersecurity Policy Administrator supporting the ALTESS ...
Location
Location
United States
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • DoD 8570.01-M IAM level II certification
  • CompTIA Security+
  • Computing Environment (CE) Certification (i.e., MCSE, Server+, etc.) – can be waived for 30 days after project join date
  • Mid to senior level Cybersecurity Policy Administrator experience in a cloud environment
  • Strong verbal and written communication skills
  • Experience effectively managing multiple large-scale projects
  • Understanding of network, storage, server and application technologies
  • Working knowledge of DoD STIGs, and IA Vulnerability Management (IAVM)
  • Information Assurance Engineer – Senior: Masters +10yrs, or Bachelors +12yrs
  • Information Assurance Engineer – Intermediate: Bachelors +5yrs or Associates +7yrs
Job Responsibility
Job Responsibility
  • Serve as overall subject matter expert on Cybersecurity Policy Administration
  • Work between technical and policy teams to implement, maintain and monitor technical security configuration controls, including: STIGs, SRGs and other industry security hardening guidance
  • Work between technical and policy teams to successfully implement and manage requirements for maintaining cloud P-ATO, ATO and security control inheritance capabilities
  • Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements
  • Act as the ISSO for hosted systems, assuming the responsibilities as outlined in AR 25-2
  • Assist hosted customers in obtaining and maintaining RMF for DOD IT and other certifications as required
  • Update and/or assist the hosted system’s personnel in updating artifacts of the accreditation package and store the artifacts in organizationally defined repository
  • i.e., system diagram (logical and physical) Hardware/Software/Firmware Inventory, Interface & Ports, Protocols and Services listing, etc.
  • Assist in the preparation of network infrastructure specifications or designs incorporating required information security features
  • Review and evaluate Information Systems Design Plans, Continuity of Operation Plans, Communication Plans, engineering change proposals and configuration changes for compliance with relevant security regulations, policies and best industry practice
Read More
Arrow Right

Senior Software Engineer

The Senior Software Engineer is a key technical contributor who not only impleme...
Location
Location
India , Pune
Salary
Salary:
Not provided
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years experience in software development
  • Deep expertise in Python, Core Java and object-oriented programming (OOP) principles
  • Ability to work in Python APIs, FastAPI, Django
  • Experience using Core Java libraries and features (e.g., Concurrency, Collections, I/O)
  • Proven ability to quickly learn and contribute in Python development for scripting, tooling, or service implementation
  • Expertise with Core Java features, data structures, and advanced libraries (e.g., NIO, advanced concurrency primitives, and diagnostic tools)
  • Solid experience with dependency management (Maven/Gradle) and testing frameworks (JUnit/TestNG)
  • Experience with CI/CD pipelines (Jenkins, GitLab CI, etc.)
  • Proficiency with version control systems (GitHub/GitLab)
  • Excellent collaboration and communication skills, with the ability to articulate technical designs and tradeoffs to both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Lead the design, development, and delivery of complex, high-impact features and services, ensuring they are scalable, highly available, and secure
  • Act as a subject matter expert for the team's core services, driving Core Java best practices and enforcing high code quality standards
  • Mentor and coach junior and mid-level engineers on technical design, implementation, and Core Java development standards
  • Collaborate with other Senior Engineers and Architects to define technical solutions and interfaces across multiple services
  • Conduct thorough code reviews and contribute to improving engineering processes, CI/CD pipelines, and operational excellence
  • Drive the resolution of complex production issues, performing root cause analysis, and implementing preventative measures
Read More
Arrow Right

Digital Web & Mobile Security Senior Analyst

The Digital Web & Mobile Security Senior Analyst is an intermediate level positi...
Location
Location
India , Chennai; Pune
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience as application security consultant / security expert
  • SME level knowledge of web application vulnerabilities and web application business logic flaws and threats
  • In depth and hands-on understanding and application architectures and technology (including web applications, mobile technology, web 2.0 technology, identity and access management)
  • Demonstrable experience with mobile application security, HTML5, Web Services/API assessment, identity management will be highly regarded
  • Thorough understanding of industry and corporate technology standards for Information Security
  • Expert in latest Internet and Mobile technology with strong architectural and design knowledge
  • Detailed familiarity with security hacking tools and techniques
  • Excellent written and oral English communication skills
Job Responsibility
Job Responsibility
  • Prevent and drive to clear the outstanding safety and soundness items by assessing and predicting the potential risk items before it becomes an issue / escalation
  • Assess priorities across multiple safety and soundness items and drive those critical ones similar like driving high priority production items and never settle until it is closed
  • Drive our outstanding safety and soundness items across all teams to closure and turn it around to become prevention instead of reacting to issues
  • Operate independently including the ability to provide executive summary for safety and soundness issues for executive consumption without a need for a continuous review
  • Review existing security architectures, identify design gaps, and recommend security enhancements
  • Act as an advocate for the application security architecture. Communicates and educates on the IS Architecture and roadmap
  • Develop security design pattern by identifying broader and emerging IS issues
  • Provides architecture consulting across the bank to project teams and other architects
  • Prioritize architecture deliverables, and establish short-term, mid-term and long-range architecture plans. Facilitates the migration to the reference architecture in a way that enables and supports the strategic plan
  • Maintains understanding of business issues, operating procedures and priorities
  • Fulltime
Read More
Arrow Right

Internal Business Platforms Admin

Position responsible for support and administration of on premise internal busin...
Location
Location
United States
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Fully adjudicated DOD Secret clearance (minimum)
  • Masters +10yrs experience or Bachelors +12yrs experience (for Senior Software Engineer)
  • Bachelors +5yrs or Associates +7yrs experience (for Intermediate Software Engineer)
  • CompTIA Security+ certification
  • Achieve and maintain ServiceNow Certifications (Certified System Administrator, Certified Implementation Specialist- ITSM within first 6 months)
  • Computing Environment (CE) Certification (can be waived for 3 months after project join date)
  • 1-3 years’ Experience with ServiceNow configuration in: IT Service Management suite, Platform configuration (forms, workflows, etc.), CMDB/Discovery
  • Understanding of how ServiceNow works with 3rd Party applications
  • Knowledge of Application Server architecture in large enterprise environment using IIS, Apache, Tomcat
  • Knowledge of Windows and Linux administrations skills
Job Responsibility
Job Responsibility
  • Responsible for all facets of support and administration of on premise internal business tools (primarily ServiceNow) at PD ALTESS
  • Maintaining, updating, and creating complex business logic with ServiceNow tool
  • Maintain and administer web application servers hosting ServiceNow and other internal business tools on Windows and Linux OS
  • Work across wide variety of systems, applications, and projects within PD ALTESS
  • End user support of ServiceNow, Atlassian, and Alfresco internal business tools
  • Following agile SDLC, configure internal business tools to customer requirements (mainly ServiceNow)
  • Performing all required patching, upgrading, and cybersecurity compliance activities for application environments (Windows and Linux OS)
  • Performing deployment of mid-tier computing capabilities (IIS, Apache, etc.)
  • Maintaining existing and configuring new ServiceNow workflows and custom components
  • Working with customers to enhance ServiceNow capabilities
Read More
Arrow Right
New

Senior QA Engineer (Next-Gen Firewall)

As a Senior QA Engineer, you will be a key member of our quality assurance team,...
Location
Location
Vietnam , Ho Chi Minh City
Salary
Salary:
Not provided
qualgo.net Logo
Qualgo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Engineering, or a related field
  • 4+ years of professional experience in software quality assurance or SDET roles
  • Strong proficiency in Python (preferred) or Java for writing automated test scripts
  • Experience with frameworks like Pytest, Robot Framework, Selenium, or Cypress
  • Deep understanding of smoke, regression, integration, and performance testing types
  • Proficiency with bug tracking and project management systems (e.g., Jira, Confluence)
  • Excellent analytical mind, clear communication skills, and the ability to collaborate effectively in a fast-paced environment
  • Professional proficiency in English to communicate with the global teams
Job Responsibility
Job Responsibility
  • Design, develop, and execute comprehensive test plans and test cases for complex software systems, ensuring high coverage of both UI and backend network logic
  • Architect and maintain scalable automated test frameworks and scripts (using tools like Python, Pytest, Selenium, or similar) to reduce manual effort
  • Identify, document, and track software defects using Jira
  • work closely with developers to reproduce complex network/AI edge cases and verify fixes
  • Lead code reviews for test scripts, advocate for 'Shift-Left' testing, and contribute to the continuous improvement of our SDLC and CI/CD pipelines
  • Coach junior and mid-level QA engineers on best practices, automation techniques, and troubleshooting
  • Perform rigorous performance, stress, and stability testing to ensure the firewall can handle high network throughput without latency
  • Ensure product compliance with industry security regulations and standards
  • Perform the duties and tasks assigned by your direct report or as otherwise instructed by the Company
What we offer
What we offer
  • Meaningful work & impact
  • Competitive rewards
  • Growth & well-being
  • People & workspace
  • Young & dynamic environment
Read More
Arrow Right
New

SOC Incident Response Manager

We are seeking a SOC Incident Response Manager - Senior Vice President. Being ta...
Location
Location
United States , Irving
Salary
Salary:
156160.00 - 234240.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
January 19, 2026
Flip Icon
Requirements
Requirements
  • Bachelor's degree in a technically rigorous domain such as Computer Science, Information Security, Engineering, Digital Forensics, etc.
  • 10+ years of professional experience in cybersecurity and/or information security, or demonstrated equivalent capability
  • 5+ years hands-on working in cyber incident response and investigations, with at least 3 years in a leadership or management capacity, overseeing medium to large global teams, with exposure to various computing environments including cloud and traditional infrastructure
  • Proven experience in leading, mentoring, and developing technical teams
  • Demonstrated expertise or oversight in Dev/Sec/Ops practices within various computing environments
  • Deep understanding and experience with common services and platforms from a security and incident response perspective
  • Proven experience leading or directing forensic investigations or large-scale incident response efforts across diverse environments
  • Strong understanding and strategic leadership in containerization methods and tools (e.g., Docker, Kubernetes), including incident response and digital forensics considerations
  • Advanced certifications (e.g., GIAC, CISSP) in security or equivalent expertise
  • Demonstrated ability to lead teams in analyzing and pivoting through large data sets during incident investigations
Job Responsibility
Job Responsibility
  • Lead, mentor, and manage a global team of 6-10 Security Operations Center Incident Responders, fostering a culture of excellence and continuous improvement
  • Oversee and direct incident response functions, ensuring adherence to established playbooks and best practices across diverse computing environments
  • Drive strategic initiatives to enhance incident detection, containment, and eradication capabilities
  • Lead and support in-depth triage and investigations of urgent cyber incidents
  • Manage team performance, conduct regular reviews, and facilitate career development for direct reports
  • Ensure the team effectively performs host-based analytical functions (e.g., digital forensics, metadata, malware analysis, etc.) through investigating Windows, Unix-based, appliances, and Mac OS X systems to uncover Indicators of Compromise (IOCs) and/or Tactics, Techniques and Procedures (TTPs)
  • Oversee the creation and tracking of metrics based on the MITRE ATT&CK Framework and other standard security-focused models, using these to drive continuous improvement
  • Lead collaboration with application and infrastructure stakeholders to identify key components and information sources such as various environments (on-premises versus other distributed systems), servers, workstations, middleware, applications, databases, logs, etc.
  • Direct incident response efforts using forensic and other custom tools to identify sources of compromise and/or malicious activities
  • Collaborate with global multidisciplinary groups for triaging and defining the scope of large-scale incidents
What we offer
What we offer
  • medical, dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • discretionary and formulaic incentive and retention awards
  • Fulltime
!
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy