🛠 Tech Stack

💼 About This Role

You'll lead the implementation and management of application security testing tools and integrate security into CI/CD pipelines for Fortune 500 clients. You'll triage vulnerabilities, perform hands-on validation, and collaborate with development teams to ensure secure coding practices. This role offers the chance to shape the security posture of a growing data product company.

🎯 What You'll Do

• Configure and manage Application Security Testing (AST) tools across platforms
• Integrate security tools and automated checks into CI/CD pipelines
• Perform hands-on validation of vulnerabilities using Burp Suite
• Drive end-to-end vulnerability lifecycle from identification to closure

📋 Requirements

• 6+ years dedicated experience in Application Security or DevSecOps
• Hands-on experience with ASPM, DAST, IAST, SCA, and Secret Detection tooling
• Proficiency using Burp Suite to manually validate vulnerabilities
• Track record integrating security tools into GitLab CI/CD pipelines

✨ Nice to Have

• Industry certifications like GWAPT, OSWE, CSSLP, or CASE
• Cloud security experience in AWS and/or GCP
• Experience with Jira for vulnerability tracking