Security Engineer – Vulnerability Management & AppSec (RARR Job 6066)

Role Overview

We are hiring a Cybersecurity Engineer with expertise in Vulnerability Management and Application Security (AppSec). The role focuses on identifying, prioritizing, and remediating vulnerabilities while ensuring secure application development practices.

Mandatory Skills

• Hands-on experience with Tenable and Wiz
• Strong expertise in enterprise vulnerability management & scanning
• Experience in risk prioritization (CVSS, EPSS)
• Knowledge of patch management & remediation tracking
• Experience in vulnerability lifecycle management
• Hands-on in Secure SDLC implementation
• Experience with SAST, DAST, IAST, SCA tools
• Knowledge of API security testing
• Strong understanding of OWASP Top 10 & SANS Top 25

Key Responsibilities

• Perform vulnerability assessments & security testing
• Prioritize risks and drive remediation governance
• Work with Dev, Infra & DevOps teams for risk reduction
• Implement and enforce secure SDLC practices
• Conduct application security testing (SAST/DAST/IAST/SCA)
• Track, validate, and report vulnerability remediation
• Align security practices with compliance & threat intelligence