Responsibilities & Qualifications:
- Collaborate with central vulnerability tooling teams to contribute to program maturation in support of vulnerability management activities
- Provide information security consultation for aspects of security reviews, risk remediation, architecture reviews and secure coding practices.
- Collaborate and consult with peers, colleagues, and mid-level to more experienced managers to resolve issues and achieve goals
- Coordinate with vendors on third party to leverage product capabilities and customize them to meet the requirements.
- Work closely with leadership, infrastructure, product development, and DevOps team members to assess risk, develop options, and implement solutions
- Knowledge of security information and event management (SIEM) tools, SAST, DAST and IAST tools
- Interact with Technical teams on threat attack vectors, risks and related analysis details
- Knowledge of common networking ports and protocols, application security, defense-in-depth, and common security elements
- Using REST API to fetch data from security vendor tools using python or other such scripting.
- Experience and good understanding of configuration and troubleshooting the WAFs, Load balancers and API gateways.
- Able to understand security in depth designs and actively contribute to them for the newer projects both on cloud and on-prem.
- Experience in technical writing/editing, to create or review/edit highly technical security documentation, to include cybersecurity and technical risk related documentation.