Job Description
KENVUE GCC, BENGALURU
Manager (Application Security)
Job Location- Bangalore
Responsibilities-
- Conduct comprehensive security assessments of applications to identify vulnerabilities and weaknesses.
- Perform penetration testing, code reviews, and vulnerability scanning to ensure the security of web and mobile applications.
- Collaborate with development teams to provide guidance on secure coding practices and assist in the remediation of identified security issues.
- Develop and maintain security standards, policies, and procedures related to application security.
- Stay current with the latest security trends, threats, and vulnerabilities affecting application security.
- Participate as the lead in incident response and security incident investigations related to application security.
- Work closely with cross-functional teams to integrate security into the technology development lifecycle.
- Lead a small team and facilitate standup meetings
- Maintain locally developed custom php tools
- Utilize and manage security tools such as Snyk, OWASP ZAP, and custom php tools
Qualifications-
- Bachelor's degree in Computer Science, Information Security, or related field or 7+ years of cyber security experience.
- Relevant certifications such as CISSP, CEH, CompTIA Security+, Azure Security Engineer, and AWS certified Security Specialty, and Cloud are a plu s.
- 4 years of Azure (or AWS) security experience, identity and access, applications, networking, and security standards and best practices
- Knowledge of Azure functions a plus
- Microsoft Power Platform experience, Power App development experience
- E xperience with WAF solutions such as Cloudflare, Akamai, etc.
- Experience with security assessment tools such as Snyk, OWASP ZAP, et c.
- Experience with programming/scripting skills in languages such as php, Python, Java, or similar.
- Working experience with application security assessments, vulnerability testing, and secure code reviews.
- Knowledge of web application security vulnerabilities and common attack vectors (e.g., OWASP Top 10).
- Understanding of encryption technologies, authentication mechanisms, and secure coding practices.
- Experience with the roles, processes, and tools to enable a high-performing DevOps practice in an Agile environment.
- Excellent problem-solving and analytical skills, along with effective communication and teamwork abilities.
- Experience leading a small team and facilitating stand up meetings.
- Experience with Atlassian tools such as Jira, Confluence, and Bitbucket.
- Knowledge of DNS and IP management
Job Qualifications
- Bachelor's degree in Computer Science, Information Security, or related field or 7+ years of cyber security experience.
Primary Location
Asia Pacific-India-Karnataka-Bangalore
Job Function
Information Security
