UST
Website:
ust.com
Job details:
Role Description
Required Exp: 5-8 yrs
Role Overview
We are seeking a highly skilled Security Testing Specialist to join our team and lead the transition and management of security testing processes. The ideal candidate will have hands-on experience with automated security testing tools, vulnerability analysis, and penetration testing, ensuring robust security practices across development pipelines.
________________________________________
Key Responsibilities
Implement and manage fully automated security testing workflows integrated with GitLab repositories using Devsecops pipeline.
Monitor and analyze security defects using Defect Doja and ensure timely remediation.
Perform comprehensive security analysis using Detect Secrets, Semgrep, CDXgen, CycloneDX Plugin and ZAPrody or equivalent tools.
Collaborate with internal teams to transition penetration testing in-house from third-party vendors.
Conduct sensitive data scans and monitoring using Datadog.
Work closely with stakeholders to maintain and improve security maturity across projects.
Updating Security testing scanners
________________________________________
Required Skills & Tools Expertise
Strong knowledge and hands-on experience with:
GitLab (CI/CD pipelines)
Defect Doja
Semgrep, CDXgen, CycloneDX Plugin, ZAPrody or equivalent tools
Detect Secrets
Datadog
Familiarity with penetration testing methodologies and tools.
Ability to analyze vulnerabilities and provide actionable recommendations.
Excellent problem-solving and communication skills.
________________________________________
Preferred Qualifications
Experience in transitioning security testing processes from third-party to in-house.
Knowledge of secure coding practices and DevSecOps principles.
Certifications such as OSCP, CEH, or similar are a plus.
Skills
security testing,cdxgen,semgrep,datadog,penetration testing,defect doja,ci/cd pipelines,cyclonedx plugin,vulnerability analysis,zaproxy,gitlab,devsecops
Click on Apply to know more.