• Provide security techniques and expertise to ensure the infrastructure and software services meet specific customer security requirements/certifications
• Collaborate with members of the team and
product owners to solve operational issues and develop enhancements such as automation.
• Ensure applications stay compliant by integrating application and DevSecOps processes and CI/CD pipelines from early stages of the lifecycle.
• Collaborate with team members on continuous improvement to both the Security DevOps pipelines and processes, and to the Information Security tools, services, and processes.
• Understand technical and business requirements to develop tactical and strategic roadmaps to address and implement Secure SDLC controls (Data Privacy, SAST, DAST, etc).
• Bachelor Degree in information security, computer science.
• Experience working in an Agile, DevOps/SecDevOps environment.
• Experience working in a Security role handling on premise and cloud infrastructures.
• Experience with security testing at scale by building and implementing static and dynamic analysis tools, integrating security into CI/CD workflows for everyday deployments.
• Experience with static code analysis for software or infrastructure as code, including SonarQube, Terraform.
• Experience in developing integration APIs and WebServices (REST/SOAP), API Development.