Product Security Lead

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field with a minimum experience of 8+ years in security products.
• Proven experience in implementing proactive security solutions and integrating security into the software development lifecycle (SDLC)
• Familiarity with secure design review, threat modeling, and testing methodologies such as OWASP.
• Hands-on tool experience with Metasploit Kali, Synck, Synopsys, HP Fortify, Burp suite, Nmap, ZAP, Netsparker, OWASP CSRF Tester, Checkmarx, SonarQube, SQLite browser, Drozer
• Knowledge and experience of NVD and CVE/CWEs, CVE tracking, zero-day and other exploits, and the process of publishing and reporting vulnerabilities and their impact
• Knowledge and experience in implementation of OWASP-Top10, SANS-Top25, other cyber advisories
• Knowledge of secure implementations on public Clouds like Azure and familiarity with containerization technologies (Kubernetes, Docker).
• Obtained relevant information security certifications, such as OSCP, CASE, CISSP, etc.
• Excellent communication and collaboration skills to work effectively with cross-functional teams and stakeholders.
• Familiarity with Agile processes and JIRA
• Ability to work with minimal day-to-day direction and must be personally motivated to learn new, emerging technologies continually.
• Understands Software Development Life Cycle and SOAP, REST, and GraphQL APIs
• In-depth knowledge with Azure cloud architecture and virtualization technologies, such as Containers, EKS, Kubernetes, and Vmware