Officer, Application Security, LME
External
Hkex · ChinaFull-timeOn-site2w ago
Application SecurityCI/CDDevSecOpsKubernetesOWASPPenetration Testing
Prepare for this interview
EliteAI-generated questions, company research, and talking points tailored to this role
Responsibilities
- Support secure SDLC initiatives , including static code analysis, dependency analysis and secure design reviews
- Maintain and enhance SonarQube and integrate security checks into CI/CD pipelines
- Assist in producing and managing SBOMs for in‑house and third‑party developed applications
- Perform application and API security testing , including security testing during deployment
- Support vulnerability remediation by working closely with development teams
- Participate in threat modelling and security architecture discussions
- Assist in penetration testing and red teaming activities under senior guidance
- Support security of applications running on Kubernetes platforms, including OpenShift
- Work with global stakeholders, including LME, in English‑speaking environments
- Required Skills & Experience
- 1-3 years of experience in application security, secure software development or cyber security
- Understanding of web application and API security (OWASP Top 10 / OWASP API Top 10)
- Familiarity with DevSecOps practices and tools , such as SonarQube and CI/CD pipelines
- Basic understanding of software supply chain security and SBOM concepts
- Exposure to Kubernetes or OpenShift environments is a strong advantage
- Strong interest in pentesting, vulnerability research and attacker techniques
- Experience in a foreign financial institution environment is a plus
- Strong self‑learning capability, hands‑on attitude and passion for technology
- Good spoken and written English is required
- Company Introduction:
- ITD SZ
- 港交所科技(深圳)有限公司 ,是2016年12月28日于深圳市前海自贸区成立的外商独资企业。
- 作为港交所的技术子公司, 港交所科技(深圳)有限公司 主要是为集团及其附属公司提供计算机软件、计算机硬件、信息系统、云存储、云计算、物联网和计算机网络的开发、技术服务、技术咨询、技术转让;经济信息咨询、企业管理咨询、商务信息咨询、商业信息咨询、信息系统设计、集成、运行维护;数据库管理、大数据分析;以承接服务外包方式提供系统应用管理和维护、信息技术支持管理、数据处理等信息技术和业务流程外包服务。
Additional Information
Location: CN-Shenzhen-HyQ Shift: Standard - 40 Hours (China) Scheduled Weekly Hours: 40 Worker Type: Permanent Job Summary: The Officer - Application Security supports secure software development practices for HKEX systems serving London Metal Exchange (LME). This role is ideal for a technically strong junior engineer seeking hands on experience in application security, secure SDLC and Kubernetes security within a financial market infrastructure. Job Duties:
Your Match
How well this role fits your profile.
Company Intel
What employees say
Worked at hkex? Share your experience