Duties and Responsibilities

• Perform Security Risk and Assessments (SRA) for critical applications, identifying potential vulnerabilities and recommending enhancements to strengthen security posture.
• Develop and maintain security policies and procedures related to application development and deployment.
• Secure container orchestration platforms such as OpenShift, and manage container runtime environments using Podman and Docker.
• Implement and manage API security solutions, with a preference for experience with MuleSoft and Traceable.
• Oversee the integration and management of open-source security using NexusIQ or similar tools to identify and remediate vulnerabilities.
• Install, configure, and maintain Runtime Application Self-Protection (RASP) solutions, specifically Contrast Protect, to provide real-time application security.
• Conduct comprehensive architecture reviews of new software applications to identify security risks, propose mitigation strategies, and ensure alignment with security best practices.
• Provide security guidance and training to development and operations teams to raise awareness and improve security practices.

Required Qualifications

• Bachelor’s in Computer Science, Cybersecurity, or a related field.
• Minimum of 12 years of experience in an application security role.
• Hands-on experience in security architecture and risk assessments.
• Proven expertise in securing container environments and managing container security.
• Experience with API management and security, especially with MuleSoft and Traceable.
• Proficiency in managing open-source security and using tools such as NexusIQ.
• Experience with implementing RASP solutions, preferably Contrast Protect.
• Familiarity with industry standards and frameworks such as OWASP, NIST, and ISO 27001.
• Relevant security certifications (CISSP, CEH, OSCP, etc.) are highly desirable.

Posted By