Responsibilities
• Work on any number of security and identity related areas and products
• Build systems for detecting anomalous activities within the product
• Develops and administers software engineering procedures and training for vulnerability scans and static code analysis
• Analyse vulnerability report of various SCA and SAST scan tools like, Black Duck, Tenable, Semgrem etc.
• Able to write scripts using Python and configure Jenkins for automated pipeline
• Serve as a subject matter expert for solutions, procedures and implementation of cybersecurity systems
• Perform Black-Box penetration testing and code reviews of internally developed linux os automation, api, and related Linux OS tools, 3rd party vendor solutions
• Develop innovative solutions to complex enterprise security platform problems
• Prepare and document departmental standard operating procedures
• Participate in product security risk assessments, hazard analysis, and assist product development engineers with vulnerability remediation
• Represent the product development team on product security incident response teams
• Participate in technical design reviews and code inspections, architecture reviews for Security assessment.
• Perform application vulnerability assessments
• Demonstrates proper secure coding practices driving standards within the software engineering organization
Skills Required-
• You are independent and comfortable working in a fast-paced environment
• You use excellent communication skills, on both technical and non-technical issues
• Minimum 6 years in the field of product security
• Have knowledge in SCA and SAST tools
• Have hands on knowledge in Python and Jenkins
• Deep understanding of Vulnerability (CVE) analysis concepts
• Have hands on knowledge in Network security, Browser security, TCP/IP model, PKI, Certificate management.
Education
• Masters / Bachelors degree required in CS, IT or equivalent