(Senior) Engineer, Software Security


  • Tech Skills



    Penetration testing

  • Job level
    Experienced (Non-Manager)
  • Work location
    Ho Chi Minh
  • Language
  • Type
    Full Time
  • Salary
  • Deadline

Business profile

Fossil - Misfit

H3 Building, 384 Hoang Dieu, Ward 6, Quận 4, TP Hồ Chí Minh, Việt Nam

: 100-499

Công TY TNHH FOSSIL Việt NAM - Fossil Vietnam (formerly Misfit), a US high-tech company inventing and manufacturing wearables and smart home products.

Fossil Vietnam (formerly Misfit) is one of 60 offices under Fossil Group worldwide. Before joining Fossil, Misfit was a US high-tech company inventing and manufacturing wearables and smart home products, with R&D and operations office in Vietnam. In November 2015, Misfit got acquired and has since then become part of the Fossil Group's portfolio of brands, standing aside world-renowned brands including Fossil, Michael Kors, Burberry, Emporio Armani, Diesel, adidas, DKNY, among others.

As one of the the top 3 largest makers of watches in the world, Fossil Group is selling over 50 million watches and accessories a year in over 150 countries.

With the help of Misfit, Fossil will be working towards offering a broader spectrum of connected devices that target fashion-conscious consumers, and aiming at leading the convergence of style and technology.

In years to come, Fossil Vietnam will be the Center of Excellence for Cloud & App Innovation and Development for Fossil Group, and will power a wider array of connected devices.

With that mission at hand, we will remain a place where innovation flourishes, where world-class talents get leveraged, and where people come together to make greater products and tell greater stories.

Job description

We are looking for people who want to make Fossil/Misfit platform safer for millions of users around the world. We’d love to talk to you if you’re a talented individual who is passionate about finding security weaknesses and implementing security best practices. If that mission sounds exciting to you, we have a few different flavors of skillsets we are looking for. As a Fossil/Misfit engineer, you'll be contributing to the development of next-generation wearable products to improve peoples' health and wellbeing, while participating in the most innovative engineering team in Vietnam.


● Mentor engineers to design secure solutions and mitigate insecure code from being implemented.
● Review source code manually and automatically for security weaknesses.
● Mitigate identified risks/vulnerabilities to an acceptable level.
● Track existing security issues to ensure remediation followed by the development teams.
● Identify new security issues by staying up-to-date on current security trends.

Job requirement


● At least 1 year of relevant working experience (remediation of security issues, static analysis and penetration testing, secure coding etc.)
● Familiarity with Agile development practices and how to integrate security into SDLC.
● Knowledge of: o Security flaws and defense strategies (OWASP Top 10, OWASP Mobile Top 10, CWE 25, etc.) o Secure coding concepts and practices in Java, Android, PHP, Ruby, Python, etc. for writing and correcting coding mistakes. o Penetration testing of websites, web services, mobile applications (Burp, Fortify, Checkmarx, etc.) ● Preferred: o Hacking and security certificates (CISSP, CSSLP, OSCP, CEH, etc.) o Ability to explain clearly security issues to project staff. o Ability to write code to break code (applications)


● Meaningful work
● Subsidies for: cell phone, health/fitness, health insurance ·
● Plenty of food, all the time
● Jerk-free, ego-free environment ·
● Passionate colleagues
● A commitment to make your time with us the most transformational time in your career to date
● Personal and professional development opportunities: training programs or security conferences in US (most of Fossil members have been to a training program there at least once)


  • English : (Speaking: Intermediate - Reading: Intermediate - Writing: Intermediate)

Technical skills

  • Penetration testing
  • SDLC
  • Java
  • Android
  • PHP
  • Ruby
  • Python
  • Web Services
  • Fortify
  • Checkmarx
  • OSCP
  • CEH
  • FitNesse


  • Analytic Skills
  • Agile
  • Communication Skills
  • Time Management Skills

Views: 30 | Quantity: 1