Description
You will lead security design reviews and integrate automated testing into the development lifecycle.
Responsibilities
- Lead security design reviews for applications, components, and services.
- Execute manual and automated security tests across web, mobile, and microservices.
- Integrate security testing into CI/CD pipelines for continuous assurance.
- Prioritize, track, and resolve security issues and risks.
- Drive secure coding strategies and automate testing within the development lifecycle.
Required Skills
- 5+ years of experience in application development or security engineering.
- Minimum 3 years of experience working within the SDLC.
- Strong foundation in software engineering and programming.
- Expertise in secure coding practices and common application security frameworks.
- Deep knowledge of OWASP Top 10 and vulnerability management techniques.
- Experience with CI/CD pipelines and modern DevSecOps environments.
- Proficiency in SDLC and DevSecOps methodologies.
Preferred Skills
- Hands-on experience with security testing tools such as Burp Suite, OWASP ZAP, or SAST/DAST tools.
- Familiarity with cloud security principles and microservices architecture.
- Ability to communicate technical findings to engineers and non-technical stakeholders.