In system development and operations projects, you will be responsible for end-to-end activities ranging from analyzing vulnerability assessment reports (SAST, DAST, penetration testing, etc.) and security/quality risks, to formulate remediation strategies and plans, as well as designing and executing validation test plans. This position goes beyond test execution. You will evaluate the business impact and risks of identified vulnerabilities and defects, propose remediation priorities, and establish effective validation and testing strategies.
- Analyze and triage vulnerability assessment reports (SAST, DAST, penetration testing results, etc.).
- Evaluate vulnerability severity and impact using industry standards such as CVSS and prioritize remediation activities.
- Develop remediation strategies and action plans, coordinate stakeholder alignment, and track execution progress.
- Review requirements specifications, design documents, and business process flows to identify security and quality risks.
- Define risk-based testing strategies and test plans.
- Create and review test perspectives, scenarios, and test cases to validate remediation effectiveness.
- Execute security testing, functional testing, integration testing, and regression testing.
- Prepare reports on remediation status, test results, and residual risks.
- Collaborate closely with development teams,
Project Managers (PMs),
Business Analysts (BAs), and security stakeholders.