Responsibilities

• Identify, assess, and mitigate risks related to application security and vulnerabilities.
• Review code and applications to ensure compliance with security standards, including OWASP top 10 vulnerabilities.
• Perform regular security assessments of .NET applications (ASP.NET, Web API, MVC) and integrate security best practices into the development lifecycle.
• Collaborate with development teams during various SDLC phases (DEV, SIT, etc.) to implement secure coding practices.
• Stay updated with the latest security breaches, threats, and vulnerabilities, and implement mitigation strategies.
• Effectively communicate security risks, issues, and status updates to management and stakeholders.
• Maintain clear documentation related to risk assessment findings, vulnerabilities, and mitigation efforts.
• Develop and maintain .NET-based web applications and services, including Web API, Web Services, and MVC frameworks.

Qualifications

• 5+ years in application risk management, security, and controls.
• Proficient in .NET (ASP.NET, Web API, MVC), AngularJS, Java, and web services.
• Strong understanding of OWASP Top 10 vulnerabilities and best practices for secure coding.
• Experience working across multiple SDLC phases (DEV, SIT, etc.) with a focus on secure development.
• Strong written and oral communication skills, with the ability to articulate security issues to both technical and non-technical stakeholders.
• Ability to assess and mitigate risks in application security, ensuring alignment with security policies and industry standards.
• Ability to divide time between work and study to keep up with the latest security trends, tools, and best practices.

Posted By