Information Security Specialist
Role details
Job location
Tech stack
Job description
We are seeking an Application Security Engineer to implement and support solutions for Static Code Analysis (SCA) and Static Application Security Testing (SAST). The engineer will lead initiatives to improve the application security posture by migrating infrastructure and re-configuring security tool services for a Cloud/SaaS platform. This position involves managing and supporting Docker containers, HELM charts, and automation with Java, Groovy, and Python scripts, as well as optimizing security processes., * Implement, and support solutions and technologies for Static Code Analysis (SCA) and Static Application Security Testing (SAST).
- Lead initiatives to improve application security posture by migrating infrastructure and re-configuring security tool services for Cloud/SaaS platforms.
- Manage and support Docker containers, HELM charts, and automation using Java, Groovy, and Python scripts.
- Update and reconfigure CI/CD build jobs to integrate with security tools.
- Identify opportunities and solutions for process improvement and automation.
- Support and participate in incident response and technical investigations.
- Ensure adherence to compliance regulations and policies.
- Assist with Jenkins builds, onboard teams, and troubleshoot issues.
Requirements
Technical Skills:
- Experience with application security tools such as SAST, OSA, and DAST.
- Proficiency with CI/CD tools including Jenkins and GitLab.
- Knowledge of Docker containers and cloud platforms (AWS/Azure).
- Programming experience in Java, Python, and Gradle.
- Experience with DevOps and Application Security.
Preferred Qualifications
- Threat modelling
- AI AppSec