Application Security Engineer

Description

This role is part of application security engineering team responsible for scanning code following the established guidelines, secure development policies and procedures. This role will focus heavily on building and enhancing Software Composition Analysis (SCA) practice, help software developers at various CIO teams to build faster, more securely, fine-tuning the tools, leveraging AI where possible to improve processes and services for optimal developer experience.

• Managing security automation tools with main focus on SCA (i.e. Checkmarx One, BlackDuck) and other tools in the ecosystem along with supporting operational management with regularly scheduled upgrade of the tools.

• Interface with various internal teams ServiceNow AVR, DevOps and vulnerability operations team to make sure SCA vulnerabilities are identified and recorded per the application security policies and guidance.