As member of Cyber Intelligence & Security Operations Center (CISOC) team he/she will be responsible for implementing and managing Static Application Security Testing (SAST) within our organization. The ideal candidate will have a strong background in software development and security with a particular focus on the implementation and use of SAST tools:
Implement and manage SAST tools across the organization.
Conduct security assessments of applications using SAST tools.
Provide training and guidance to development teams on the use of SAST tools and secure coding practices.
Participate in the development and enforcement of security policies and procedures.
Help to formulate vulnerability management frameworks & working structures.
Perform tasks including research classification and analysis of security events and vulnerabilities detected.
Act as point of contact for managing & delivering various vulnerability & remediation reports.
Working in close collaboration with the IT Team members and stakeholders to deliver and implement technology solutions in support of the business objectives to improve productivity and enhance processes and security.
Understand BI framework and follow defined processes. Ensure compliant documentation requirements and guarantee its production as required according to the SOPs and working instructions.
Work with various risk & information security teams in presenting vulnerability management status & updates to technology subject matter experts & management.
The ideal candidate will have:
Strong background in DevSecOps application security SAST tools and secure coding practices
Experience with CI/CD pipelines (Jenkins) and container orchestration (Kubernetes/OpenShift)
Knowledge of security vulnerabilities threat mitigation and remediation processes (triage prioritization change management)
Proficiency in scripting languages (Python PowerShell or Bash)
Ability to work in international multicultural environments with strong English communication skills
Solid analytical problem-solving teamwork and results-driven mindset
Familiarity with automation APIs and AI in DevOps including LLMs agent-based systems and workflow orchestration
Relevant security certifications are a plus but not mandatory
#LI-BA1 #LI-ONSITE
Job DescriptionCISOC Application Security EngineerAs member of Cyber Intelligence & Security Operations Center (CISOC) team he/she will be responsible for implementing and managing Static Application Security Testing (SAST) within our organization. The ideal candidate will have a strong background i...
Job Description
CISOC Application Security Engineer
As member of Cyber Intelligence & Security Operations Center (CISOC) team he/she will be responsible for implementing and managing Static Application Security Testing (SAST) within our organization. The ideal candidate will have a strong background in software development and security with a particular focus on the implementation and use of SAST tools:
Implement and manage SAST tools across the organization.
Conduct security assessments of applications using SAST tools.
Provide training and guidance to development teams on the use of SAST tools and secure coding practices.
Participate in the development and enforcement of security policies and procedures.
Help to formulate vulnerability management frameworks & working structures.
Perform tasks including research classification and analysis of security events and vulnerabilities detected.
Act as point of contact for managing & delivering various vulnerability & remediation reports.
Working in close collaboration with the IT Team members and stakeholders to deliver and implement technology solutions in support of the business objectives to improve productivity and enhance processes and security.
Understand BI framework and follow defined processes. Ensure compliant documentation requirements and guarantee its production as required according to the SOPs and working instructions.
Work with various risk & information security teams in presenting vulnerability management status & updates to technology subject matter experts & management.
The ideal candidate will have:
Strong background in DevSecOps application security SAST tools and secure coding practices
Experience with CI/CD pipelines (Jenkins) and container orchestration (Kubernetes/OpenShift)
Knowledge of security vulnerabilities threat mitigation and remediation processes (triage prioritization change management)
Proficiency in scripting languages (Python PowerShell or Bash)
Ability to work in international multicultural environments with strong English communication skills
Solid analytical problem-solving teamwork and results-driven mindset
Familiarity with automation APIs and AI in DevOps including LLMs agent-based systems and workflow orchestration
Relevant security certifications are a plus but not mandatory
Created in 1987, Stefanini is a $1B global IT provider of business solutions with locations in 40 countries across the Americas, Europe, Australia and Asia. With more than 25,000 employees, Stefanini provides onshore, offshore and nearshore IT services, including application developme
... View more
Job Location:
Monthly Salary:
Posted on:
Vacancies:
