years of hands-on Experience and should be aware of the below
- DAST – Qualys
- SAST - Veracode
- SCA - XRay
- IAST – Contrast.
- APISec – NoName
- OWASP, OSSTMM, SANS, BURP SUITE, HP FORTIFY
Detailed Job Description:
Having 7+ years professional experience in applicable software, systems, or architect profession 3 years of experience in security architecture 3 years of cloud networking, infrastructure management concepts and tools including VPN, Firewalls, Hyper-V, System Center and Storage 3 years of hands-on experience with DevOps concepts and strategies Experience with some or all services including middle-tier, micro service, or web service design, development, and operations Understanding of Integrated Development Environment (IDE) and Continuous Integration / Continuous Delivery (CI/CD) Pipeline tools and processes Knowledge of security and hardening operating systems, applications and containers with tools Knowledge of containerization utilizing Kubernetes Experience scripting in PowerShell, Python, Go, Perl or other languages Experience with configuring popular Continuous Integration / Continuous Development (CI/CD) tools, including Jenkins, GitLab CI/CD, CircleCl, Puppet, Chef, and Spinnaker Knowledge of threat modeling, risk assessment techniques, code reviews in the context of DevSecOps security Experience designing multiple security technologies including (Cloud Security, Secure Network Design, Multiple-level security applications Application Security (Secure Coding)) Experience with successful IaaS, PaaS, & SaaS cloud architecture solutions