TP-Link Systems Inc. is seeking a Software Security Analyst to review and analyze source code to identify potential security vulnerabilities and enhance the overall security posture of applications
Requirements
- Strong understanding of secure coding principles, software vulnerabilities, and common attack vectors (e.g., SQL injection, cross-site scripting, buffer overflow)
- Proficiency in multiple programming languages and familiarity with a variety of development frameworks and environments
- Experience with automated code review tools (e.g., SonarQube, Coverity, Checkmarx, Veracode) and manual code review techniques
- Relevant certifications such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or Certified Information Systems Security Professional (CISSP) are a plus
- Familiarity with Python, Java, C++, JavaScript, Swift and Kotlin
- Experience with code auditing standards, processes, and tools
- Knowledge of secure coding practices and remediation strategies
Responsibilities
- Conduct thorough audits of source code to identify vulnerabilities, security weaknesses, and coding inefficiencies
- Review and analyze code across a variety of programming languages and frameworks, including but not limited to Python, Java, C++, JavaScript, Swift and Kotlin
- Develop and maintain code auditing standards, processes, and tools to ensure consistent and high-quality reviews
- Collaborate with development teams to provide feedback and guidance on secure coding practices and remediation strategies
- Prepare detailed audit reports that outline findings, risks, and recommendations for improving code security and quality
- Stay up to date with the latest security threats, coding standards, and best practices to continuously improve audit processes
- Mentor junior auditors and provide guidance on auditing techniques, tools, and best practices
Other
- Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience
- 5+ years of experience in source code auditing, software development, or application security
- Excellent analytical and problem-solving skills with a keen eye for detail
- Strong communication skills, with the ability to explain complex technical concepts to non-technical stakeholders
- No third-party agency inquiries, and we are unable to offer visa sponsorships at this time
