Specialist DDIT ISC SecOps VulnSvcs
Location
Andhra Pradesh | India
Job description
About the role
Location : #L1 Hybrid
The role is part of Vulnerability Services global team focusing on vulnerability assessment and/or vulnerability management solutions engineering, integration, and automation. Role is required to develop and maintain technical automation or integration solutions that solves problems or enables effective execution of activities such as data search/retrieval from different tools and systems, large data set analysis, automated technical report generation from data, automated action/event triggers, building analysis reports, etc.
Your Responsibilities Include but are not limited to:
• Assess requirements and manual processes in the security tools and vulnerability processes for automation/integration opportunities.
• Develop scripts (python, JS etc.) to collect and analyze large data sets (using modules like pandas) from multiple tools and systems.
• Develop plugins using Rest API/Graphql to help automate processes and integrate it with other tools.
• Test new integrations with ServiceNow vulnerability modules, support implementation and maintain engineering aspects with operations team.
• Collaborate with development teams to enhance and fine-tune current ServiceNow solutions, as well as provide support for diagnosing and resolving issues related to modules, workflows, and processes.
• Engage effectively with application teams, project managers, and stakeholders to identify improvements, optimize and streamline processes for vulnerability management solutions (e.g., ServiceNow)
• Identify potential improvement areas for vulnerability remediation and shared learned lessons with application/development teams.
• Work with other team members to support technical evaluation and remediation of vulnerabilities from various application security testing such as SAST, SCA, DAST, PT.
Role Requirements
• Minimum 3+ years of experience with relevant security solutions engineering, integration, and automation development scope.
• Expertise in full stack coding and scripting languages to integrate multiple tools and writing custom scripts for automation of processes (preferably JavaScript, Python, Rest APIs, Graphql, HTML, PHP, etc.).
• Expertise in developing and configuring CI/CD pipelines (Jenkins, ADO, YAML)
• Experience with ServiceNow SecOps (AVR, VR, CC), Qualys, Checkmarx, or other equivalent vulnerability assessment and management solutions.
• Understanding of leading vulnerability scoring standards, such as CVSS, and ability to translate vulnerability severity as security risk.
• Preferable: Knowledge of ServiceNow plugin development
Why Novartis: Our purpose is to reimagine medicine to improve and extend people’s lives and our vision is to become the most valued and trusted medicines company in the world. How can we achieve this? With our people. It is our associates that drive us each day to reach our ambitions. Be a part of this mission and join us! Learn more here:
You’ll receive: You can find everything you need to know about our benefits and rewards in the Novartis Life Handbook.
Commitment to Diversity and Inclusion:
Novartis is committed to building an outstanding, inclusive work environment and diverse teams' representative of the patients and communities we serve.
Join our Novartis Network: If this role is not suitable to your experience or career goals but you wish to stay connected to hear more about Novartis and our career opportunities, join the Novartis Network here:
Commitment to Diversity & Inclusion:
We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.
Job tags
Salary
