Job Responsibilities:

• Manage and maintain DevSecOps tools (SCA, Code Quality, SAST, DAST).
• Onboard and support teams using DevSecOps tools.
• Keep documentation current and accurate.
• Integrate tools within the development environment.
• Configure and manage CI pipelines.
• Test and evaluate new security tools and technologies.
• Troubleshoot issues internally and with tool vendors.
• Perform threat modeling and suggest security processes.

Job Requirements:

• Strong DevOps mindset and working methodology.
• Background in product security.

Experience:

• Hands-on experience with tools like Synopsys BlackDuck, Snyk, Sonatype Nexus, SonarQube, HCL AppScan.
• Experience collaborating closely with software development teams.
• Proficiency in CI tools like Jenkins and/or GitLab.
• Knowledge of scripting languages (e.g., Bash, Python).