Sign up with

Already have an account? Log in here

Need some help?
Talk to us at +91 7670800001

Lead Info Security Engineer at Principal Financial Services, Inc.

Pune, maharashtra, India -

Full Time

Start Date

Immediate

Expiry Date

08 Jan, 26

Salary

0.0

Posted On

10 Oct, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Software Development, SAST, SCA, Secure Code Reviews, CodeQL, Fortify, Checkmarx, GitHub Advanced Security, OWASP Top 10, DevOps, CI/CD, AWS, Infrastructure as Code, Salesforce APEX, Scripting, Automation

Industry

Financial Services

Description

Responsibilities Software Development Experience Looking for candidates from development teams who have 7-9 years - (1) 3-5 yrs in software development experience using languages like Java, Python, .Net, C#, JavaScript or Typescript SAST & SCA Experience Must have 4-5 yrs experience with Secure Code Reviews Required Hands-on experience in using enterprise code (SAST) scanning tools like CodeQL, Fortify, Checkmarx, and GitHub Advanced Security (GHAS) Secrets scanning. Experience in CodeQL and GHAS is preferred Experience in identifying & managing potential false positives identified by SAST tools listed above. Required Hands-on experience in using Software Composition Analysis (SCA) tool. Hands-on Exp on tools like Dependabot, Endor, Mend, Snyk, and/or Black Duck are preferred. Required Have knowledge and understanding of OWASP Top 10 vulnerabilities Experience with DevOps practices - Build & Deployment (CI/CD) pipelines – Jenkins, Azure DevOps, GitHub Actions Experience in collaborating with developers and engineers, to apprise them about vulnerabilities & assist in remediation of the same. Infrastructure as a Code Scanning Strong understanding of AWS services and security controls around these services. Experience in Infrastructure as a Code (IaC) scanning, using Chekov Tool (by Prisma Cloud) or Wiz Code. Salesforce APEX Code Scanning Understanding of security vulnerabilities in the Salesforce APEX source code Experience in APEX Code Scanning using Digitec Tool Scripting Experience: Experience in Scripting languages such as PowerShell or Python to build Automation. Qualifications BTech in Computer Sciences (Preferred)

How To Apply:

Incase you would like to apply to this job directly from the source, please click here

Responsibilities

The Lead Info Security Engineer will be responsible for conducting secure code reviews and utilizing SAST and SCA tools to identify vulnerabilities. They will collaborate with development teams to assist in remediation efforts and ensure secure software development practices.