Posted by Satish Gawas (@satishgawas)
The candidate should have a high-level understanding of the modern cyber security landscape, a background in application development, secure coding practices, static and dynamic code analysis. It is important to be able to guide and assist developers in creating robust and secure code, as well as be able to analyse tool outputs. The candidate will need to have the ability to understand the business and the impact of code defects on business risk, as well as the ability to communicate technical details in a business context. It is essential for the candidate to have the continual drive to learn new techniques and new technologies to expand their skillset, as well as the ability to share that information with others.
Manually analyze code from a security perspective, point out security issues and recommend required corrections.
Analyse output from code checking tools like Checkmarx
Maintain demonstrable knowledge of current vulnerability exploitation techniques
Maintain dynamic and static analysis toolsets to ensure scans are accurate and running regularly
Pentest web apps
Log secure code issues to Jira database
Ability to lead a team a plus
Required Skills:Must have Secure code review experience
Demonstrated ability to meet deliverable, timetables, and deadlines
Possess personal integrity and display highly ethical behaviour to inspire confidence in others.
Understanding of cyber security threats, risks, vulnerabilities, and attacks, leading to insight about threat actor motives, tactics, and techniques
Capable of working as a team player and also independently
High degree of initiative & enthusiasm
Good English language skills, both written and spoken
Accuracy and attention to detail.
Travel will be required as needed
Apply for this position
Login with Google or GitHub to see instructions on how to apply. Your identity will not be revealed to the employer.
It is NOT OK for recruiters, HR consultants, and other intermediaries to contact this employer