Senior Application Security Engineer (NCS/Job/ 2347)

· Experience with OWASP, static/dynamic analysis and SCA for web applications, and common security tools.

· In depth Understanding of Linux OS, network security and web related protocols (such as TCP/IP, UDP, IPSEC, HTTP, HTTPS, SNMP protocols etc).

· Familiarity with common application security vulnerabilities/flaws, security controls and best practices.

· Ability to analyze, assess the discovered vulnerabilities and provide recommendations

· Experience about security aspect of Kubernetes environment.

· Security certifications will be considered an asset

· Good to have development experience or scripting skills.

Roles and Responsibilities:

· Help the organization evolve its application security functions and services

· Manage integration with vulnerability check tools such as Static Code Analysis, Dynamic Code Analysis, Software Composition Analysis tools

· Discover security exposures and develop mitigation plans, and also report and fix the technical debt

· Actively participate in security initiatives with minimum supervision

· Follow security best practices in performing tasks

· Work closely with cross-functional teams (Engineering, DevSecOps, Product) while carrying out daily tasks