Work on any number of security and identity related areas and products Build systems for detecting anomalous activities within the product
Develops and administers software engineering procedures and training for vulnerability scans and static code analysis
Analyse vulnerability report of various SCA and SAST scan tools like, Black Duck, Tenable, Semgrem etc.
Able to write scripts using Python and configure Jenkins for automated pipeline
Serve as a subject matter expert for solutions, procedures and implementation of cybersecurity systems
Perform Black-Box penetration testing and code reviews of internally developed linux os automation, api, and related Linux OS tools, 3rd party vendor solutions
Develop innovative solutions to complex enterprise security platform problems
Prepare and document departmental standard operating procedures
Participate in product security risk assessments, hazard analysis, and assist product development engineers with vulnerability remediation
Represent the product development team on product security incident response teams
Participate in technical design reviews and code inspections, architecture reviews for Security assessment.
Perform application vulnerability assessments
Demonstrates proper secure coding practices driving standards within the software engineering organization
Skills Required-
You are independent and comfortable working in a fast-paced environment
You use excellent communication skills, on both technical and non-technical issues
Minimum 6 years in the field of product security
Have knowledge in SCA and SAST tools
Have hands on knowledge in Python and Jenkins
Deep understanding of Vulnerability (CVE) analysis concepts
Have hands on knowledge in Network security, Browser security, TCP/IP model, PKI, Certificate management.
Education
Masters / Bachelors degree required in CS, IT or equivalent