CSC Global - DevSecOps Engineer - Vulnerability Assessment
CSC GlobalBangalore18 hours ago
Job descriptionPrior experience (8-10 years) in a Production Engineering or related position Experience working with Developers, DevOps, and Engineering teams in a dynamic environment to promote / implement the DevSecOps program throughout the organization Experience coordinating and performing vulnerability assessments through the use of automated and manual tools (SAST, DAST, IAST etc) Ability to review and analyze vulnerability data to identify security risks to the organization's network, infrastructure, and application's and determine any reported vulnerabilities that are false positives Capability to prepare security vulnerability and risk management reports for management Leadership and teaming skills to coordinate remediation of vulnerabilities within established timeframes Experience generating and providing executive reports for vulnerability management across DevSecOps Security Products Proficiency in Java Programming, Bash, Powershell, Python, Terraform or other scripting languages Familiarity with Information Security frameworks / standards (i. CIS, NIST, RFC2196, etc) Comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc Experience configuring, implementing, and leveraging computer security and networking diagnostic / monitoring tools Knowledge of Windows and Linux patch management and related information security functions (authentication, encryption, iptables, SSL, Ciphers, etc) Ability to work with APIs and Plugins to integrate security tools into established CI / CD pipelines Support code reviews across all code platforms Manage security integration into the SDLC process at CSC Help evolve CSCs application security functions and services Responsible for Security bug intake and remediation process for CSC Responsible for leading the remediation of application vulnerability scanning and penetration testing Manage integration with Static Application Security Testing (SAST) Software Composition Analysis (SCA), Dynamic Application Security Testing (DAST), Infrastructure as a Code (IaC) scanning, Secret Scanning, and Container Image scanning Identify security exposures and develop mitigation plans Identify, report and fix technical debt Assist Manager of Application Security on all application security activities Become a representative for the CSC Information Security program Be productive and participate in security initiatives with minimal supervision Becomes a subject matter expert for security solutions within the CSC platform, knowledge of SANS 25 and Owasp Top 10 Be able to act as a mentor for junior dev, devops and security engineers Use the tools and technologies used throughout CSC InfoSec Own and document medium / large epics and follow through until completion Present security solutions to a larger CSC audience Troubleshoot issues and performance bottlenecks Follow Security best practices Collaborate with cross functional teams (Engineering, DevOps, Product) while carrying out day-to-day tasks Participate in requirement gathering with Product / SRE / InfraServices Collaborate with cross Business Unit teams (CLS, DBS, Corp Tax, TBS) on implementing standardized security solutions and integrations Participate in inner sourcing / procurement initiatives within CSC Strong experience with BI Design and Development for Vuln Mgmt BE / BTech Degree Strong experience in distributed platform development and design Strong foundation in core information security principles and goals Proven expertise in enterprise security solutions Knowledge on common and emerging security threats In-depth knowledge of security best practices Ability to assist in leading the InfoSec team Exceptional analytical aptitude and attention to detail Ability to lead and project drive multiple security initiatives Excellent communication skills Ability to explain complex security topics in simple language Ability to work with Senior Leadership Fast learner / A strong willingness to learn Good team player who is self-motivated and well organized
Description :
Role : Sr. DevSecOps Engineer
Location : Bangalore
Working Hours : 12-9PM
Working Model : Hybrid
Intro :
As a DevSecOps engineer, you will provide technical leadership in the DevSecOps areas of Vulnerability Scanning, Certificate Management, Password Policy Management, Infrastructure As code for Cloud Resource Provisioning, Data Analysis of security monitoring outputs, coordination of Remediation Patching, and other daily Security and Compliance efforts.
Additionally, you will assist in developing an automated security framework for robust deployment tools and processes, leveraging various scripting languages and open-source solutions.
Some of the things you will be doing :
- Familiarity with DevSecOps ecosystem : Terraform, Ansible, GitHub, Jenkins, Azure DevOps, SAST, DAST & SCA
- Terraform, Ansible and AWS, Azure Architecture, Network and Security Certifications
- Familiarity with API Security, Container Security, AWS and Azure Cloud Security
- Knowledge of Cloud Resource Provisioning, Cloud Network and Architecture, Cloud Standards and Policies
- Experience with AWS and Azure Policy, Configuration, and Security Management tools
- Experience with security automation, Cloud resource provisioning
- Expertise in programming and scripting languages like Python, NodeJS, SQL query, bash, powershell, and Java
- Experience with Vulnerable Code remediation
- Experience with Vulnerability Management and executive reporting using PowerBI
What technical skills, experience, and qualifications do you need? :
What technical skills, experience, and qualifications do you need? :
(ref : hirist.tech)
Create a job alert for this search
Engineer Vulnerability • Bangalore
Related jobs
- Promoted
Senior DevOps Engineer
UnosecurBengaluru, Karnataka, India Headquartered in Berlin, we’re a fast-growing B2B security SaaS platform making identity security smarter and simpler for enterprises worldwide.
You’ll be part of a diverse team that thrives on crea...Show moreLast updated: 12 days ago
- Promoted
DevOps Engineer
True Tech ProfessionalsGreater Bengaluru Area, India DevOps Engineer (GCP | Terraform | Cloud Build).Gurgaon (preferred) or Bangalore.You’ll be involved in designing, automating, and maintaining build and deployment pipelines while ensuring system re...Show moreLast updated: 4 days ago
- Promoted
Vulnerability Assessment Consultant-2
ConfidentialBengaluru / Bangalore The Information Security Consultant will support planning, execution, and reporting of operational and system IT internal controls and risk management within the company.
This role will act as a poi...Show moreLast updated: 30+ days ago
- Promoted
L1 / L2 VAPT Engineer
Terralogic Software Solutions Private Limited.Bangalore Role : VAPT Engineer (L2 / L3) As a Vulnerability Assessment and Penetration Testing (VAPT) Engineer, you will be responsible for conducting advanced security assessments to iden...Show moreLast updated: 7 days ago
- Promoted
Senior / Lead Engineer - DevOps (AWS / Azure / GCP)
QBursthosur, India We are seeking an experienced and versatile DevOps Engineer.The ideal candidate will have hands-on experience with CI / CD pipelines, Kubernetes, Linux systems, monitoring / logging tools, and Infrastr...Show moreLast updated: 7 days ago
- Promoted
Sr DevOps Engineer
Nebula Tech Solutionshosur, India DevOps / SRE professionals (5+ years).Kubernetes, monitoring / metrics, and coding.This is a role for engineers who thrive on.
Kubernetes clusters (EKS / GKE / AKS).Jenkins, ArgoCD, FluxCD, Harness, GitHub ...Show moreLast updated: 8 days ago
- Promoted
DevOps Engineer(GCP Cloud)
Enterprise Minds, IncBengaluru, Karnataka, India We’re Hiring – Senior DevOps Engineer (Platform Engineering) | Apna.Senior DevOps Engineer (SDE-2 – Platform Engineering).
You’ll help modernize our platform, implement self-healing systems, and dri...Show moreLast updated: 15 days ago
- Promoted
Senior DevOps Engineer
RadwareGreater Bengaluru Area, India Radware is a global leader of cyber security and application delivery solutions for physical, cloud, and software defined data centers.
At Radware, we live and breathe cybersecurity.Each day, our in...Show moreLast updated: 15 days ago
- Promoted
Azure Devops Engineer
Tata Consultancy ServicesGreater Bengaluru Area, India The ideal candidate is a proactive self-starter who thrives in a fast-paced environment and is committed to optimizing software development pipelines and cloud infrastructure.You will play a pivota...Show moreLast updated: 23 days ago
- Promoted
Vulnerability Management Specialist (AWS & Wiz)
PURVIEWBengaluru, Karnataka, India Vulnerability Management Specialist with hands-on experience in AWS environments and Wiz (cloud security posture management).
The ideal candidate will be responsible for identifying, assessing, and ...Show moreLast updated: 30+ days ago
- Promoted
Vulnerability Management - L3
ITC InfotechBengaluru, Karnataka, India On the portal where vulnerabilities are listed, each vulnerability must be analyzed;.Within each record of each vulnerability, analyze the required fixes and the vendor involved.Contact the vendor ...Show moreLast updated: 30+ days ago
- Promoted
Senior DevOps Engineer
LeadSquaredBengaluru, Karnataka, India LeadSquared is a leading customer acquisition SaaS platform used by over 400,000 users across 25 countries to run their sales and marketing processes.
Our goal is to grow 10X in the next 3 years whi...Show moreLast updated: 30+ days ago
- Promoted
DevOps Engineer
Alp Consulting Ltd.Greater Bengaluru Area, India Good knowledge of AWS technologies including EC2, ECS / EKS (Docker containers), RDS, S3, Lambda, CloudHSM.Cloud stack deployment & upgrade using CloudFormation / Terraform.REST end point development...Show moreLast updated: 12 days ago
- Promoted
DevOps Engineer
Dexian IndiaBengaluru, Karnataka, India We are seeking a Senior DevOps Engineer with 4–6 years of hands-on experience in cloud infrastructure, automation, and cost optimization.
You will take full ownership of our company-wide cloud envir...Show moreLast updated: 30+ days ago
- Promoted
Principal Analyst - Vulnerability Assessment
OptivBangalore The Principal Analyst will provide deep-level analysis for client investigations utilizing customer-provided data sources, audit, and monitoring tools at both the government and enterpris...Show moreLast updated: 30+ days ago
- Promoted
Cyber Security Engineer - Vulnerability Assessment
ENTER RecruitmentBangalore We are seeking a skilled and passionate Cybersecurity Engineer to play a pivotal role in designing and implementing robust security measures for Parspec's systems.
As an early member of our eng...Show moreLast updated: 30+ days ago
- Promoted
Vulnerability Managment Engineer
ConfidentialBengaluru / Bangalore Having 3-8 years of hands-on experience, working as a Vulnerability management engineer in the Application and Infrastructure / Cloud space.
Daily assessment experience of vulnerabilities reports iden...Show moreLast updated: 30+ days ago
- Promoted
Vulnerability management - l3
ITC InfotechBengaluru, Karnataka, India On the portal where vulnerabilities are listed, each vulnerability must be analyzed;.Within each record of each vulnerability, analyze the required fixes and the vendor involved.Contact the vendor ...Show moreLast updated: 22 days ago