Latest Jobs at AFEX

Job Summary

• As an Application Security Engineer, you will play a crucial role in ensuring the security and integrity of our applications at the Commodities Exchange.
• You will be responsible for designing, implementing, and maintaining robust security measures and practices throughout the software development lifecycle.
• Collaborating with development teams, you will identify potential vulnerabilities, conduct security assessments, and provide guidance on secure coding practices.
• Your expertise will help safeguard our applications and protect sensitive data from potential threats.

Responsibilities

• Design and implement application security practices, frameworks, and guidelines to ensure secure development and deployment of software applications.
• Collaborate with development teams to conduct security reviews and identify potential vulnerabilities and risks.
• Perform manual and automated security testing of applications to identify and remediate security weaknesses.
• Conduct code reviews to identify and address security vulnerabilities in application code.
• Develop and deliver training sessions on secure coding practices for development teams.
• Implement and maintain application security tools and technologies, such as static code analysis, vulnerability scanning, and penetration testing tools.
• Stay updated with the latest security threats, vulnerabilities, and best practices related to application security.
• Participate in incident response activities, including investigations, root cause analysis, and remediation of security incidents.
• Work closely with cross-functional teams, including DevOps and Security Operations, to ensure a comprehensive and integrated security approach.
• Collaborate with external security vendors and auditors to conduct security assessments and audits.

Requirements

• Bachelor’s degree in computer science, Information Security, or a related field
• At least 3 years of experience in application security or a related role
• Strong knowledge of application security principles, secure coding practices, and common vulnerabilities (e.g, OWASP Top 10)
• Experience with manual and automated application security testing techniques, tools, and frameworks
• Familiarity with industry-standard security frameworks, such as NIST, ISO 27001, or PCI-DSS
• Proficiency in modern programming languages such as JavaScript or Python
• Knowledge of web application architectures, APIs, and web services
• Experience with secure software development lifecycle (SDLC) practices, including threat modeling and secure code reviews.
• Familiarity with cloud platforms (e.g., AWS, Azure, Google Cloud Platform) and their security controls
• Excellent analytical and problem-solving skills
• Strong communication and interpersonal skill

go to method of application »

Job Summary

• As a DevOps Engineer, you will play a crucial role in designing, implementing, and maintaining the infrastructure and deployment pipelines for our applications at the Commodities Exchange.
• You will collaborate with development teams, system administrators, and other stakeholders to ensure smooth and efficient software delivery.
• Your expertise in cloud platforms, automation, and infrastructure as code will contribute to the scalability, reliability, and security of our systems.

Responsibilities

• Design, implement, and maintain scalable and secure infrastructure on cloud platforms such as AWS and Azure
• Collaborate with development teams to establish and maintain efficient CI/CD pipelines for application deployment and delivery.
• Develop and maintain infrastructure as code (IaC) using tools like Terraform, ensuring consistent and repeatable deployments.
• Implement and maintain containerization technologies such as Docker for application deployment and scalability.
• Configure and manage orchestration platforms like Kubernetes for container orchestration and management.
• Monitor and optimize system performance, availability, and scalability through proactive monitoring and alerting.
• Collaborate with cross-functional teams to define and implement best practices for configuration management and infrastructure automation.
• Implement and manage automated testing and quality assurance processes within the CI/CD pipeline.
• Work closely with security teams to ensure the compliance and security of infrastructure and applications.
• Stay up to date with emerging trends and technologies in DevOps, cloud platforms, and automation tools.
• Provide technical guidance and support to development teams on infrastructure-related matters

Requirements

• Bachelor’s degree in computer science, Information Technology, or related field
• At least 3 years of experience in a DevOps or related role
• Strong experience with cloud platforms, particularly AWS and Azure, including infrastructure provisioning, configuration, and management.
• Proficiency in at least one programming language, such as Python or Node.js
• Experience with containerization technologies, especially Docker, and container orchestration tools like Kubernetes
• Hands-on experience with infrastructure as code tools, preferably Terraform.
• Familiarity with CI/CD tools and processes, such as Jenkins, Bitbucket CI/CD, or CircleCI
• Knowledge of configuration management tools, such as Ansible, Chef, or Puppet
• Experience with monitoring and logging tools like Prometheus, Grafana, ELK stack, Gray log or similar
• Strong understanding of networking concepts and security best practices
• Familiarity with agile methodologies and collaborative development environments
• Excellent problem-solving and troubleshooting skills.
• Strong communication and collaboration skills