The AppSec team works on initiatives that prevent, detect, and respond to malicious activity. Risk/threat assessment, incident response, security architecture, vulnerability management, governance and compliance, security awareness and training, security operations, among many other efforts make up the information security program. This is a key role within the Information Security department that will be focused on application security.
¿ Knowledge of web application firewalls (Akamai Kona, F5 ASM, Modsecurity).
Experience implementing DevOps tool-chain (Jenkins, SonarQube, GitHub, Nexus, Code quality tools) implementation and automation
¿ Hands on use of security testing tools (Burp Suite, ZAP, IBM AppScan)
¿ Knowledge of encryption technologies (web, database, and file).
¿ Knowledge of Identity and Access management and its application in an enterprise.
¿ Assisted in investigation of security incidents
¿ Evaluation of new software projects, technologies and services
¿ Assisted in support of firewalls, content engines, intrusion detection/prevention systems
Valid Through: 2019-11-12