Senior DevSecOps Engineer

Responsibilities:

Manage and execute security assessments for agile projects & ensure project timelines are met.
Identify opportunities to automate and standardize information security controls and for the supported groups
Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
Scan and analyze applications with automated tools, and perform manual testing if necessary
Collaborate with application teams to ensure that any identified security vulnerabilities are remediated in a timely manner.
Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behaviour, conduct and business practices, and escalating, managing and reporting control issues with transparency.
Utilize Static & Dynamic Application Security Testing (SAST/DAST), Interactive Application Security Testing (IAST), and Component Vulnerability Management (CVM) tools such as Fortify, Snyk, BurpSuite, ZAP etc to uncover additional vulnerabilities

Requirements:

Qualifications:

At least 5-7 years of relevant experience in DevSecOps (worked with tools in the area of Static Analysis, Dynamic Analysis, Container Analysis, Third Party Library analysis/Software Composition Analysis…)
Has experience in Pentesting in the area of infra/web/mobile/API
Consistently demonstrates clear and concise written and verbal English communication.
Must have a strong understanding of Linux, Kubernetes, working knowledge of CI/CD process, Jira & Programming language Python for automation
Has exposure in Vulnerability Management

Education:

---

Ứng viên quan tâm vui lòng ỨNG TUYỂN bên dưới.

hoặc, LIÊN HỆ VỚI CHÚNG TÔI để biết thêm chi tiết

P: +84 028 3925 2566 | info@hr1vietnam.com | www.hr1vietnam.com