Job Description :
Responsibilities
*Works with key stakeholders including enterprise security leadership to track open issues and follow up to resolution
Ensures scan and pen test results are analyzed in a timely manner and captured in the bug tracking system to enable review and prioritization
Categorizes issues per the pre-defined process and works with key stakeholders like product management, R&D and business owners to ensure resolution
Works with key stakeholders like Dev Ops, Infrastructure et al to build security hardened tech stacks are used for development and production
Responsible for leading, assisting resolution of identified security issues, when appropriate resolving the issues via code changes, configuration changes etc.
Designs, develops, and implements software solutions guided by organizational standards and processes, but not constrained by them, to promote automation and efficiencies in support of the security program’s goals and objectives.
Collaborates with developers, analysts, engineers, and managers to identify and implement software solutions that meet security policies and practices.
Brings existing security tool stack to bear on development problems
Identifies security requirements and related controls that may be more easily or quickly satisfied or implemented through software-enabled mechanisms and processes.
Consults with team members to increase awareness and understanding of benefits, implications, and limitations of existing or proposed software-based solutions.
Actively collaborate with other security team members, product teams, and other stakeholders to help create and maintain software-based security controls in line with industry best practices and specific business requirements.
Updates applicable knowledge by maintaining awareness and understanding emerging, technologies, strategies, approaches by participating in conferences, attending seminars, reading professional publications, etc.
Coordinates security advisement for the development team and aids in remediation of any concerns.
Provides security Subject matter expertise for the team, representing corporate security teams to the development teams and representing development team issues to the corporate security team.

Required Experienced
C# or Java development in a Web Environment
Knowledge of OWASP Top Ten vulnerabilities, cryptographic algorithms, compliance standards

Preferred Skills
Exposure to Azure or AWS and how to secure them
Security Certifications