Manager - Application Security & DevSecOps (7+ years)

Location: Bangalore(East)
Discipline: Technology
Job type: Permanent
Contact name: Gurpreet Kaur

Contact email: gurpreet.kaur@crescendogroup.in
Job ref: 36969
Published: 6 days ago

An exciting opportunity for the one having 10+ years of overall experience in IT Industry out of which 7-8 years of experience in Application Security. A perfect role fit for the one having experience in Devops or DevSecOPS.



Location: Noida / Bangalore



Your Future Employer: An American multinational professional services company mainly involved in the operations management and analytics. It offers insurance, banking, financial services, utilities, healthcare, travel, transportation and logistics services.



Responsibilities:

Managing the Threats / Vulnerability posture for the organization, by

  • Performing Web Application Penetration Testing.

  • Performing API Application Penetration Testing.

  • Performing Mobile Application Penetration Testing.

  • Performing Thick Client Application Penetration Testing.

  • Implementing, Managing & Troubleshooting Aws & Azure DevSecOps.

  • Performing Code review Using fortify SCA



Requirements:

  • Familiar with Fortify SCA, Web Inspect, Burp Suite, Fortify SSC and DevSecOps (Jenkins, Jira, Github enterprise, Gitlab, Fortify SCA )

  • Programming experience (C/C++, Java/J2EE, JavaScript, AJAX, PHP, Visual Studio etc.,) will be an added advantage. Exposure to the Application Security Vulnerabilities (as listed in OWASP Top 10), Security Testing methodologies.

  • Passion for Security, Agile, and DevOps.

  • Experience in software development and SDLC in Java, Python, C#, etc

  • Knowledge of conducting security checks (static and dynamic code analysis, vulnerability analysis in applications and penetration tests, security component analysis).

  • Understanding or virtualization and container technologies (Docker, Kubernetes, OpenShift).

  • Monitor and manage deployment and support as an DevSecOps Team

  • Handle all critical security incidents, advisories ad resolutions as per SLA.

  • Improve the accessibility of security through automation, continuous integration pipelines, and other means.

  • Build tools and automation scripts that enable developers to easily consume security services delivered by the AppSec team.

  • Point of contact for product teams as it relates to automation, CI/CD, and DevOps and/or DevSecOps.



What is in it for you?

  • Work in diverse culture and global team

  • Grow in culture focused on training and mentoring

  • Work in a fast-paced environment in an established brand



Reach Us:

If you think you are perfect fit for this role, kindly drop me an email along with your updated CV at gurpreet.kaur@crescendogroup.in