Technical / Functional Skills
- 8 years of hands-on Experience and should be aware of the below
- DAST – Qualys
- SAST - Veracode
- SCA - XRay
- IAST – Contrast.
- APISec – NoName
- OWASP, OSSTMM, SANS, BURP SUITE, HP FORTIFY
Detailed Job Description:
- Having 7+ years professional experience in applicable software, systems, or architect profession
- 3 years of experience in security architecture
- 3 years of cloud networking, infrastructure management concepts and tools including VPN, Firewalls, Hyper-V, System Center and Storage
- 3 years of hands-on experience with DevOps concepts and strategies
- Experience with some or all services including middle-tier, micro service, or web service design, development, and operations
- Understanding of Integrated Development Environment (IDE) and Continuous Integration / Continuous Delivery (CI/CD)
- Pipeline tools and processes Knowledge of security and hardening operating systems, applications and containers with tools
- Knowledge of containerization utilizing Kubernetes Experience scripting in PowerShell, Python, Go, Perl or other languages
- Experience with configuring popular Continuous Integration / Continuous Development (CI/CD) tools, including Jenkins, GitLab CI/CD, CircleCl, Puppet, Chef, and Spinnaker Knowledge of threat modeling, risk assessment techniques, code reviews in the context of DevSecOps security
- Experience designing multiple security technologies including (Cloud Security, Secure Network Design, Multiple-level security applications
- Application Security (Secure Coding)) Experience with successful IaaS, PaaS, & SaaS cloud architecture solutions