Application Security Engineer

Join PackageX as an Application Security Engineer and play a pivotal role in safeguarding our applications from potential threats. You will be responsible for identifying vulnerabilities, recommending solutions, and helping ensure our software products meet the highest security standards.

Grade: L2 Location: Islamabad, Islamabad Capital Territory, Pakistan Application Deadline: April 26, 2026 Role overview Pakistan Mobile Communication Limited (PMCL) is hiring a Senior Application & Product Security Expert to lead secure design, development, and deployment of digital products. This position centers on embedding security practices across the Software Development Lifecycle (SDLC), safeguarding APIs and microservices, and defending products against new cyber threats. The role reports to the Stream Head of Cyber Security and collaborates with a team of 11 specialists. Key responsibilities include identifying vulnerabilities in software applications, conducting detailed security analyses, and implementing effective security controls for applications and products. Main responsibilities Define and lead the Application Security (AppSec) strategy for all product lines. Establish and oversee secure SDLC (SSDLC) frameworks. Develop policies, standards, and secure coding guidelines. Align AppSec initiatives with enterprise risk management and business objectives. Conduct threat modeling for applications and platforms using STRIDE, attack trees, and similar methods. Review and validate secure architectures for: Web and mobile applications APIs and microservices Cloud-native platforms Promote compliance with OWASP standards including Top 10, ASVS, and API Top 10. Integrate security into CI/CD pipelines using SAST, DAST, SCA, and IAST techniques. Automate security testing and enforce security policies. Work closely with DevOps teams to embed security early in the development process (shift-left approach). Set up security gates and release criteria for software deployments. Protect externally facing products and services. Implement API security controls with a focus on: Authentication (OAuth2, JWT) Rate limiting and bot protection Defend against threats such as: Injection attacks Broken authentication Business logic abuses Ensure security for Android and iOS applications, including: Reverse engineering protection Runtime protection (RASP)

Grade: L1 Location: Islamabad, Islamabad Capital Territory, Pakistan Application Deadline: 30 April 2026 Role overview The Application Security Specialist & Penetration Tester plays a key part in protecting Jazz’s digital assets. This position focuses on identifying and addressing security risks across applications, APIs, and digital portals. Reporting to the Stream Head of Cyber Security, this specialist works closely with a team of 11 colleagues to analyze, test, and strengthen application security controls. The goal is to maintain the integrity and security of the organization’s digital presence. What you will do Design, develop, and maintain an application security framework for Jazz’s digital platforms. Identify vulnerabilities in custom-built security systems, web portals, dashboards, and user-facing applications. Conduct security testing on Jazz services before launch. Perform regular security audits to ensure ongoing compliance. Apply security measures to protect applications from internal and external threats. Find and fix bugs or errors in the source code of Android and iOS mobile applications. Analyze application communication to monitor host servers and IP addresses. Implement preventive strategies to keep sensitive information secure. Collaborate with internal stakeholders to align security controls with business needs. Our commitment JazzWorld values diversity and inclusion, creating an environment where every employee has the opportunity to thrive.

Grade: L2/L3 Location: Islamabad, Islamabad Capital Territory, Pakistan Application Deadline: April 30, 2026 Role overview Pakistan Mobile Communication Limited (PMCL), known as Jazz, is hiring a Telecommunications Network Security Specialist in Islamabad. This position focuses on strengthening the security of core telecom infrastructure, with a particular emphasis on signaling systems and the secure integration of virtualization and cloud-native functions such as NFVI and 5G. The role involves defending against threats to SS7, Diameter, 4G EPC, and 5G Service-Based Architecture, while supporting the safe adoption of new technologies. Reporting to the Manager of Architecture & Cloud Security, the specialist will work alongside a team of 15 security professionals. Main responsibilities Secure signaling networks for SS7, Diameter, and 5G SBA. Deploy signaling firewalls and anti-fraud controls to address SMS, voice, and roaming attacks. Monitor and respond to threats such as location tracking (ATI abuse), SMS interception, and call redirection or spoofing. Maintain secure interconnections with roaming partners and third-party organizations. Design and enforce security protocols for EPC components (MME, SGW, PGW, HSS) and 5G Core elements (AMF, SMF, UPF, AUSF, UDM, NRF). Implement security controls that align with 3GPP standards. Protect APIs within the 5G SBA architecture using OAuth2, TLS, and API gateways. Conduct security hardening for virtual and cloud-native network functions (VNFs and CNFs). Safeguard NFV infrastructure, including OpenStack, Kubernetes, and containers. Apply micro-segmentation and zero-trust models to the telecom network. Enable workload protection for CNFs and VNFs. Integrate telecom workloads with cloud security solutions for both public and private cloud environments. Monitor telecom-specific threats using SIEM and SOC platforms. Feed telecom probes and logs (signaling, GTP, Diameter) into the SOC for analysis. Lead incident response for telecom network breaches. Conduct proactive threat hunting focused on telecom fraud and signaling misuse. Define and maintain the overall telecom security architecture. Evaluate and deploy telecom security tools, including signaling firewalls for SS7, Diameter, and 5G, DDoS mitigation systems, and IDS/IPS for telecom protocols.

Grade: L1 Location: Islamabad, Islamabad Capital Territory, Pakistan Application Deadline: 30 April 2026 Role overview The Cyber Security Operations Center Specialist helps protect Pakistan Mobile Communication Limited (PMCL) from cyber threats. This role centers on monitoring security events with tools such as SIEM and EDR, identifying potential incidents, and working with stakeholders to respond and reduce risks. The specialist reports to the Stream Head of Cyber Security and collaborates with a team of 10 professionals. Main responsibilities Identify, categorize, prioritize, and investigate security events quickly, following established triage and response procedures. Analyze logs from sources such as firewalls, network devices, infrastructure servers, and threat intelligence platforms. Monitor event queues for possible security incidents using Enterprise Security Management tools, ensuring processes are followed. Conduct initial investigations and triage of incidents, escalating or closing cases as needed. Maintain detailed shift logs, document activities, and communicate findings clearly to tier 2 analysts. Stay updated on emerging threats and vulnerabilities through ongoing research and intelligence gathering. Handle additional tasks as outlined in the console monitoring procedure.

Role Overview Pakistan Mobile Communication Limited (PMCL) is hiring a Cyber Security Operations Specialist in Islamabad. This position focuses on protecting the company’s digital assets and infrastructure. The role involves identifying security vulnerabilities, responding to incidents, and applying measures to secure sensitive information.

Grade: L1 Location: Islamabad, Islamabad Capital Territory, Pakistan Application Deadline: April 30, 2026 Role overview The Cloud & AI Security Specialist at Pakistan Mobile Communication Limited (PMCL) plays a key role in protecting both cloud environments and AI/ML systems from evolving cyber threats. This position focuses on securing cloud infrastructure, applications, and data pipelines, as well as safeguarding AI models from misconfigurations, adversarial attacks, and data breaches. Maintaining compliance and ensuring system resilience are central to the work. The specialist reports to the Manager of Architecture & Cloud Security and collaborates with a team of 15 professionals. Main responsibilities Design and implement secure architectures for cloud platforms, including AWS, Azure, and GCP. Apply security best practices in: Identity & Access Management (IAM) Network segmentation (such as VPCs and private endpoints) Data encryption (at rest, in transit, and key management) Deploy and manage cloud security tools, including CSPM, CWPP, and CIEM. Conduct cloud security posture assessments and implement hardening measures. Secure AI/ML pipelines throughout the data lifecycle: ingestion, training, deployment, and inference. Address AI-specific threats, including: Data poisoning Model inversion or extraction Adversarial attacks Implement controls for model integrity, versioning, and secure APIs for AI services. Protect training datasets and sensitive information. Develop detection rules for AI-related abuse patterns. Ensure compliance with standards and regulations such as ISO 27001, NIST, CIS benchmarks, GDPR, and local laws. Conduct risk assessments for cloud and AI deployments. Define policies for responsible and secure use of AI. Inclusion and diversity JazzWorld is an equal opportunity employer. The company values diversity and is committed to fostering an inclusive workplace for all employees.

Description:The Security Analyst I position plays a vital role within our organization. The primary responsibility involves monitoring customer environments for security incidents. This entails assessing the scope of threats, evaluating their business impact, and recommending the best course of action to mitigate and resolve issues. The Cybersecurity Technician will act as an escalation point for complex cybersecurity incidents and will need to effectively communicate with all relevant stakeholders during event management.Responsibilities:Oversee security event monitoring and incident response ticket queues, ensuring adherence to service level agreements.Timely transfer cybersecurity tickets to relevant clients or internal contacts.Clearly communicate indicators of compromise, isolation measures, and remediation strategies.Analyze system, security, and application logs to diagnose issues, identify unusual behavior, and eliminate false positives.Utilize End Detection and Response tools to investigate alerts and anomalies, constructing accurate timelines related to potential compromises.Follow established protocols for investigating, escalating, containing, or eradicating malicious activities.Prepare and present comprehensive reports to clients, team members, and management to share security information and performance metrics.Contribute insights and suggestions for enhancing internal processes and procedures related to SOC operations.Engage in threat-hunting exercises and other special projects as needed.Adhere to our established standards and processes to ensure predictable outcomes for clients.Additional Responsibilities:Maintain accurate and up-to-date timesheets, documenting all troubleshooting and communication with clients.Receive mentorship and constructive feedback from peers and supervisors.Escalate complex issues to more senior resources or appropriate teams when necessary.Collaborate with management to review ticket statuses.

Grade: L3Location: Islamabad/RawalpindiLast Date to Apply: 7th May 2026About the RoleAs the Lead Solution & Application Architect at TekNoSys, you will spearhead the design and implementation of robust, secure, and high-performance applications, with a primary focus on private cloud and on-premises solutions while facilitating hybrid cloud integrations. Your expertise in Node.js-based backend architectures and modern frontend frameworks, notably Flutter, will be critical to your success. Familiarity with .NET, Spring Boot, and AI-assisted development tools is an added advantage. You will collaborate extensively with engineering teams, business stakeholders, and product owners to ensure that the solutions you create are not only efficient and scalable but also aligned with the future growth of the business.Key ResponsibilitiesArchitect and design scalable enterprise applications utilizing Node.js, Express.js, and NestJS.Develop high-performance backend systems and integrate them with Flutter or other frontend frameworks such as React, Angular, or Vue.js.Define and implement comprehensive API strategies (REST, GraphQL, gRPC, Socket.io) with a focus on security, performance, and scalability.Prioritize deployments in private cloud and on-premises environments, ensuring compliance, security, and high availability.Facilitate hybrid cloud deployments by integrating private cloud and on-premises infrastructure with public cloud services.Implement containerization practices (Docker, Kubernetes) to enable scalable deployments in private cloud scenarios.Engage with SQL databases (MySQL, PostgreSQL) to design efficient and scalable data models.Optimize system performance, identify bottlenecks, and enhance fault tolerance.Lead the adoption of DevOps practices, including CI/CD pipelines using tools like Jenkins and GitHub Actions.Establish security best practices encompassing IAM, OAuth2, JWT authentication, RBAC, and data encryption.Work collaboratively with cross-functional teams to ensure technical solutions are in sync with business objectives.Explore and integrate AI-assisted development tools, such as GitHub Copilot and OpenAI APIs, to boost development efficiency.Stay abreast of emerging technologies and guide teams in adopting modern software development and deployment practices.

Join AireSpring as a Fortinet Security Specialist (Tier 2) and play a pivotal role in addressing our clients' security needs. This position involves implementing FortiNet solutions, migrating existing firewalls to newly deployed FortiNet appliances, and conducting initial configurations and user acceptance testing. As a key member of our team, you will configure and support integrations with third-party applications, troubleshoot and resolve issues with FortiNet implementations, handle change requests, and monitor security appliances.Your responsibilities also include proactively improving security implementations, responding to security notifications, and ensuring a positive service experience for both customers and agents. Stay updated on the latest FortiNet products and services to enhance our security offerings and practices.Specific responsibilities include:Identifying and resolving potential and actual security problems.Defining access privileges and control structures to protect systems.Reporting abnormalities and security violations.Conducting periodic audits to identify security violations and inefficiencies.Implementing and maintaining security controls to upgrade systems.Preparing performance reports and communicating system status to users and customers.Maintaining service quality by adhering to organizational standards.Enhancing technical knowledge through educational workshops and publications.Contributing to team success by achieving related results.Performing troubleshooting on active accounts.Utilizing knowledge of FortiManager, FortiAnalyzer, and FortiPortal.

Role Overview Pakistan Mobile Communication Limited (PMCL) is seeking a Cyber Security Specialist with a focus on Identity and Access Management (IAM) and Privileged Access Management (PAM). This position is based in Islamabad, Islamabad Capital Territory. Main Responsibilities Plan and deliver security solutions that protect critical business assets through effective IAM and PAM practices. Work with teams across the company to implement security policies and procedures. Conduct risk assessments related to access management and identify areas for improvement. Design and refine access controls to prevent unauthorized access and support compliance with industry standards. Impact This role plays a key part in strengthening the organization’s security posture and reducing risks tied to unauthorized access.

Devsinc is seeking a skilled MERN Developer to become a pivotal part of our expanding team. In this role, you will leverage the MERN stack (MongoDB, Express.js, React.js, and Node.js) to create dynamic web applications. You will collaborate closely with both front-end and back-end teams to craft high-quality software solutions tailored to meet business requirements.Key Responsibilities: Design, develop, and maintain web applications utilizing the MERN stack to ensure an exceptional user experience. Craft and implement RESTful APIs to facilitate interaction between frontend and backend components. Work in tandem with UI/UX designers to convert wireframes and visual concepts into functional web applications. Optimize applications for peak speed, performance, and scalability. Produce clean, maintainable code following industry best practices. Diagnose and rectify application issues, developing solutions to enhance overall performance. Engage in code reviews and contribute to collective knowledge within the team. Stay informed about emerging technologies and industry trends.

Role overview Securiti.ai, part of Veeam Software, is seeking a Customer Engineer based in Islamabad, Pakistan. The position combines technical problem-solving with regular customer interaction. Success in this role depends on understanding client needs and delivering solutions that address those requirements. What you will do Engage directly with customers to identify and understand their technical challenges Develop and present solutions tailored to each client’s situation Work with internal teams to support successful delivery of solutions Who should apply People with a strong interest in technology Those who enjoy assisting customers and tackling problems

Role overview Securiti.ai, part of Veeam Software, is seeking a Backend Software Development Engineer based in Islamabad, Pakistan. The position centers on developing and enhancing software that supports data security and compliance for organizations around the world. What you will do Design and implement backend software solutions Collaborate with team members to tackle complex technical challenges Contribute both ideas and code to projects that help organizations safeguard and manage their data Who we’re looking for Developers who value teamwork and collaboration Engineers motivated by challenging projects and ongoing learning Individuals committed to building secure and reliable systems

Securiti.ai seeks a Frontend Software Development Engineer to help shape user interfaces for its security and privacy products. This position is based in Islamabad, Pakistan and centers on making product interactions more effective and user-friendly. Key responsibilities Build and improve frontend components with current web technologies Design user experiences that make complex security and privacy features accessible Work closely with colleagues to deliver new features for the Securiti.ai platform Location The role is located in Islamabad, Pakistan.

At Veeam, we are the pioneers in Data and AI Trust, dedicated to assisting organizations in understanding, securing, and reinforcing their data and AI systems to promote the safe scaling of AI. As the leading provider in data resilience and security posture management, we are strategically positioned at the intersection of identity, data, security, and AI risk. With our headquarters in Seattle and a presence in over 30 countries, we safeguard the operational continuity of more than 550,000 customers globally. Join us in our mission to advance forward boldly, fostering growth, learning, and making substantial contributions for some of the world’s leading brands.About the RoleAs a key member of our distributed agile team, you will contribute to the development of a new SaaS platform that serves as the foundation for a diverse array of enterprise applications, tackling complex data analytics and enterprise challenges. You will play a crucial role in ensuring our framework and products align with the defined design, implementation, and quality standards.What You’ll DoDevelop and maintain a full-stack SaaS application within a cloud environment.Design, deploy, and manage cloud solutions across multiple public cloud platforms, including AWS, Google Cloud, and Microsoft Azure.Collaborate with cross-functional teams to ensure optimal product performance and user experience.Implement best practices for code quality, testing, and documentation.Continuously improve the application through feedback and iterative development.

Join the dynamic team at prime-system as a System and Network Engineer, where you will play a vital role in managing and safeguarding IT infrastructure across diverse client environments. This position requires a thorough understanding of both on-premises and cloud-based systems, providing technical expertise to ensure optimal performance and security. You will oversee various systems including networking equipment, servers, firewalls, virtualization platforms, and cloud services, delivering comprehensive support to maintain business continuity.The ideal candidate will have substantial hands-on experience with Microsoft 365, Active Directory, Azure, and an array of firewall technologies, complemented by a solid grasp of virtualization platforms like VMWare. Familiarity with remote access tools, monitoring platforms, and ticketing systems is essential. A proactive problem-solving mindset and the ability to thrive in a fast-paced, multi-client environment are crucial for success in this role.

About UsAt Taptapsend, we are on a mission to revolutionize cross-border financial services for emerging markets. By providing efficient and accessible solutions, we empower families, stimulate local economies, and transform the way millions access essential financial services.Since our inception in 2019, our innovative platform has remapped the landscape of international money transfers, operating across six continents and addressing both high-traffic and underserved remittance corridors. We have harnessed the significant shift from traditional banking to mobile technology, thereby bringing digital finance to regions previously overlooked by conventional systems. Our next phase of growth will focus on expanding our array of services and products tailored specifically for diaspora communities, such as local card solutions, enhanced savings, and payment features.We are rapidly expanding, supported by some of the most prestigious investors in the industry, and are committed to delivering a product that combines real-world impact with state-of-the-art fintech innovation.Founded by Harvard alumni and serial entrepreneurs who previously established Segovia (acquired) and GiveDirectly (over $300M in revenue, the world’s fastest-growing NGO).Supported by leading investors including Spark Capital, Canaan, Reid Hoffman, Breyer Capital, Unbound, Wamda, and others.Composed of top talent from firms like Bain, Google, McKinsey, Uber, Checkout, and Bolt; we prioritize speed, humility, and a deep commitment to our mission.A truly global workforce with over 250 employees from more than 50 nationalities and speaking over 50 languages.Driven by our core values - ownership, impact, humility, and heart - we embody these principles in every action we take.The RoleWe are seeking a talented Integration Solutions Engineer to join our dynamic engineering team and enhance our backend third-party integration systems as we scale. This role transcends mere technical performance and involves fostering the internal processes that underlie our products. You will collaborate closely with Product, Engineering, Operations, Customer Support, Growth, and other teams to test, analyze, document, and strategize integrations with partners globally.Your responsibilities will include developing integrations with banks, mobile wallet providers, and various other partners, requiring you to engage with their APIs through testing and analysis, utilizing tools like Postman or writing simple scripts. While some technical expertise is required, your ability to work collaboratively across teams will be paramount.

Join our innovative team at Seekatechnology as a Backend AI & Data Pipeline Engineer. In this role, you will be responsible for designing and implementing robust data pipelines that facilitate the integration of AI technologies into our systems. Your expertise will play a crucial role in optimizing data flow and ensuring seamless data processing.

Prime System Solutions is on the lookout for a dynamic and skilled Project Engineer to become a vital part of our forward-thinking Managed Services team. This position is perfect for individuals who are enthusiastic about cloud technologies, automation, and contemporary IT infrastructure. In this role, you will be responsible for the design, deployment, and support of both cloud and on-premises environments, with a strong emphasis on Microsoft technologies, virtualization, and network infrastructure.Key Responsibilities:Cloud & Infrastructure EngineeringArchitect, deploy, and manage Microsoft Azure environments, focusing on Azure Virtual Desktop, Cloud PCs, and Azure tenancies.Implement and oversee Microsoft Intune for comprehensive device management across Android, Apple, and Windows platforms.Facilitate Active Directory migrations from on-premise solutions to cloud (Entra ID).Configure and maintain VMware environments, including the deployment process and version upgrades.Establish and manage DHCP, file servers, and new server builds in both Azure and on-premise environments.Identity & Access ManagementConfigure and troubleshoot Azure AD Connect, including password hash synchronization, pass-through authentication, and ADFS.Implement Multi-Factor Authentication (MFA) policies across all users and tenancies.Manage Microsoft Intra and the synchronization of identities from on-premise environments.Email & SecurityOversee administration of Microsoft 365, particularly focusing on Exchange Online.Configure essential email security records such as SPF, DKIM, and DMARC.Ensure secure access and compliance across cloud and hybrid environments.Automation & ToolingParticipate in automation initiatives leveraging AI and scripting to optimize operations.Assess and implement innovative tools to improve service delivery within the MSP sector.Recommend and utilize essential MSP tools, including RMM platforms, ticketing systems, and documentation tools.