Application Security (DevSecOps) Specialist

Experience – 5-8 Years

• DevSecOps experience working with Developers, DevOps, and Engineering teams to extend the DevSecOps program in AeJ region for the Bank
• Experience in working with application owners in order to promote DevSecOps culture within the Bank
• Excellent stakeholder management & communication skills
• Leadership and Teaming skills to coordinate remediation of vulnerabilities within established timeframes
• Experience with code analysis to identify security vulnerabilities
• Experience coordinating and performing vulnerability assessments through the use of automated and manual tools
• Capability to prepare security vulnerability and risk management reports for management
• Familiarity with Information Security frameworks/standards (i.e. CIS, NIST, etc)
• Understanding of regulatory guidelines such as MAS TRM, SEBI etc. to ensure preparedness
• Ability to work with APIs and Plugins to integrate security tools into established CI/CD pipelines
• Ensure that capabilities are deployed through a continuous development pipeline with security requirements satisfied at the time of deployment
• Experience with Integrating, configuring, deploying and managing centrally provided common cloud services (e.g. IAM, networking, logging, Operating systems, Containers) as well as shared service applications on cloud
• Identify manual processes that can be smartly automated
• providing recommendation to ensure that development considers the latest thinking patterns on software security development and best practices
• Work with the cloud engineering teams and development teams to create effective CI/CD implementations, helping to configure and maintain them
• Experience with the release management of new software into the production platform
• Familiarity with Terraform and Ansible