Responsibilities:
- Contribute to supporting and enhancing EASP tools, applications and practices namely ThreadFix, Compliance service and Software Composition practices.
- Design, development, and implementation of custom software enabling the EASP practices and the adherence and compliance of app teams to the program.
- Development of software as per the evolving needs and requirements of the stream and practices.
- Integrating the solution into a CI/CD pipeline and Cloud as per the prescribed process and as needed.
- Collaboration with Stateside team to understand the requirements and deliver with expected quality.
- Suggest and execute changes to the program and implement the changes to the enabling tools.
- Integrate with the state side leads to understand requirements and implement them in the practices and tools.
- Develop and leverage the ability to execute any EASP stream assigned.
- Associate with Application Security Champions, Architects and Application development teams in Governance, oversight and enablement of EASP.
- Apply knowledge of information security and application development industry trends and technology to drive organizational change and position to properly manage and remediate vulnerabilities.
Essential Qualifications:
- 7+ years software development experience in a large enterprise environment
- 5+ years .Net software development experience using ASP.NET MVC, C#.Net/VB.Net
- 3+ year of experience with SQL/PL-SQL programming
- 3+ years of Agile delivery and CI/CD experience
- 3+ years of GitHub experience
- 2 years of scripting experience
- Advanced problem-solving skills, ability to develop effective long-term solutions to complex problems.
- Excellent verbal and written communication skills.
- Excellent inter-personal skills contributing to stakeholder management, Team engagement etc.,
- Ability to meet time sensitive deadlines.
- Strong analytical skills with high attention to detail and accuracy.
- Ability to work and achieve goals without constant supervision.
- Ability to handle confidential material in a professional manner.
Desired Qualifications:
- Experience in test Case automation area would help.
- Any experience with Azure implementations is desired.
- Knowledge of Secure Code development and OWASP is a plus.
- Experience in unit testing with Junit/NUnit/postman, functional testing with Selenium, or development of automated regression testing would help.
- Ability to work collaboratively and build consensus.
- Ability to make sound decisions and exercise good judgment.