Application security and secure coding expert job hiring
The National Database Online Registration Authority (NADRA) is seeking a highly skilled Secure Software Development and Application Security Expert (Consultant) for the Digital Economy Enhancement Project (DEEP). This contractual role offers an exciting opportunity to contribute to Pakistan’s digital transformation by ensuring secure software development practices.
Islamabad Region, Islamabad Application Deadline: 16 March 2025Employment Type job Contractual (1 Year, Extendable)Industry: Information Technology, Cybersecurity, Government of pakistan Organization: National Database online Registration Authority (NADRA)Project: Digital Economy Enhancement work is (DEEP)Credit No.: 7514-PK
The selected candidate will provide expert consulting services, ensuring the highest standards of cybersecurity, vulnerability assessment, and application security. The position is initially for one year, with the possibility of an extension based on project needs and individual performance.
Job Description
The Secure Software Development and Application Security Expert will:
Ensure secure coding practices are implemented in software development.
Conduct Vulnerability Assessment and Penetration Testing (VAPT) on applications.
Implement DevSecOps best practices for secure software deployment.
Secure APIs, web applications, and cloud-based services against cyber threats.
Develop security policies and procedures based on OWASP, NIST SSDF, and Microsoft SDL frameworks.
- NIST Secure Software Development Framework (SSDF)
- Microsoft Security Development Lifecycle (SDL)
- OWASP security standards & best practices
- Soft Skills: Excellent analytical, problem-solving, and communication skills
Company Overview
The National Database and Registration Authority (NADRA) is Pakistan’s leading identity management and digital security organization, responsible for implementing advanced technology solutions for national security of public services. NADRA is the Project Implementation Unit (PIU) for DEEP, a government initiative supported by the International Development Association (IDA) under the World Bank to enhance Pakistan’s digital economy.
Responsibilities
- Conducting in-depth security risk assessments and propose mitigation strategies.
- Identify vulnerabilities in the software applications and networks.
- Develop and enforce secure coding guidelines.
- Train developers on application security best practices.
- Implement DevSecOps workflows and security automation.
- Ensure compliance with global security in the frameworks (OWASP, NIST, ISO 27001).
- Maintain detailed security documentation and reports.
Salary & Benefits
| Category | Details |
|---|---|
| Monthly Remuneration | Competitive lump sum salary (based on experience and qualifications). |
| Contract Duration | 1 year (extendable based on good performance and project needs). |
| Work Environment | Professional, collaborative, and growth-oriented. |
| Learning & Development | Exposure to cutting-edge security and technologies. |
| Government of Pakistan Recognition | This is an opportunity to work on Pakistan’s digital security initiatives. |
How to Apply
Interested candidates must submit their resumes and copies of relevant documents before 16 March 2025. Applications for the summit’s official web link below can be sent via mail or in-person to the following address.