Remote PHP Developer (Security Specialist)

Description:

• We are looking for a PHP Developer (Security Specialist) to join the R&D team at 12Go and help build a leading online travel platform.
• The role involves providing seamless booking experiences for travelers worldwide, with a focus on security, scalability, and reliability.
• You will work on groundbreaking solutions that reshape how people explore the world using a modern tech stack.
• As a PHP Developer (Security Specialist), you will ensure the security and integrity of our web applications.
• Responsibilities include identifying and fixing security vulnerabilities, performing regular security assessments, and implementing best practices to safeguard our systems.
• You will analyze and fix security issues identified through automated scans, external audits, and internal reviews, and implement security patches and updates promptly.
• Regular penetration testing will be performed to identify vulnerabilities in our PHP applications, simulating cyberattacks to evaluate system security.
• You will conduct secure code reviews, suggest improvements, and develop and enforce security coding standards and guidelines.
• Monitoring security bulletins and staying updated with the latest security threats will be part of your role, along with implementing measures to mitigate risks and respond to security incidents.
• Collaboration with development teams to integrate security practices into the development lifecycle and providing training on secure coding practices will also be required.

Requirements:

• Proven experience as a PHP Developer, with a focus on web security is required.
• Strong knowledge of PHP frameworks such as Laravel or Symfony and security best practices is essential.
• Experience with web security tools like Burp Suite, OWASP ZAP, or Metasploit is necessary.
• A good understanding of common security threats, including SQL injection, XSS, and CSRF, is required.
• Strong problem-solving skills and attention to detail are essential soft skills.
• The ability to work independently and as part of a team is necessary.
• Excellent communication and documentation skills are required.
• Security certifications such as CEH, OSCP, or CISSP are a plus but not mandatory.

Benefits:

• You will engage in work on a product that enables millions of travelers to book their trips daily.
• The position offers full-time remote working, with a 5-day work week and 8 hours per day.
• Development opportunities include a budget for self-paced learning, global training workshops, online English language classes, and access to e-learning platforms.
• There are opportunities for internal growth and mobility within the company.
• Competitive annual leave, sick leave, and public holidays are provided.
• An annual company offsite in Thailand is included as part of the benefits.