Home

Immediate Job Opening || DevSecOps Security Engineer || Hybrid || TX or NC or PA || USC or GC Or Any EAD at Malvern, Pennsylvania, USA
Email: [email protected]
From:

Yogesh Chauhan,

Sibitalent

[email protected]

Reply to:   [email protected]

Role : DevSecOps Security Engineer

Duration : 6 Months  + Extendable

Location : Malvern, PA Charlotte, NC Dallas, TX (Local Only)

Job Description :

Provide technical security risk oversight of our Infosys partner including

Review and approval of security vulnerability acceptance requests

Ensure adherence to security requirements and vulnerablity remediation SLAs

Active participation in recurring security and vulnerability oversight meetings

Assist with daily DevSecOps Security Assurance operational and enforcement processes for our current suite of security automation tools.

Provide support to IT teams for enhancing security and protection controls in relation to security automation, CI/CD, DevSecOps, and vulnerability remediation.

Participate in DevSecOps Security Assurance projects and initiatives as assigned.

Qualifications :

Experience working with widely used security automation technologies such as:

Static Application Security Testing (SAST), Software Composition Analysis (SCA), Open Source software vulnerabilities, Dynamic Application Security Testing (DAST), Interactive Application Security Testing (IAST), Container and image security scanning, API security scanning

Practical experience analyzing vulnerability data to understand and communicate risks, concerns and outcomes of decisions

Experience with CI/CD pipeline tools and technologies such as Bamboo, Jenkins, GitHub, GitHub Actions, Artifactory, Nexus, Docker, Kubernetes, Ansible, or Terraform, and Atlassian Suite (Jira, Confluence, Bitbucket)

Working knowledge of OWASP Top 10, SANS Top 25, NIST/NVD (National Vulnerability Database), CVSS (Common Vulnerability Scoring System), CVE (Common Vulnerabilities and Exposures), technical security vulnerability remediation/mitigation, and security risk oversight

Strong, demonstrated analysis and problem-solving, communication, interpersonal skills

Professional security certification in good standing such as ISC2 CISSP, ISC2 Certified Secure Software Lifecycle Professional (CSSLP), GIAC Security Essentials Certification (GSEC), or CompTIA Security+

Recent software engineering experience is a plus

Experience with scripting languages such as PowerShell, Python, Bash, or Postman is a plus

Keywords: continuous integration continuous deployment information technology North Carolina Pennsylvania Texas
[email protected]
View all
Fri Oct 06 21:07:00 UTC 2023

To remove this job post send "job_kill 724475" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.


Your reply to [email protected] -
To       

Subject   
Message -

Your email id:

Captcha Image:
Captcha Code:


Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 9

Location: Malvern, Pennsylvania