Job Role: Security Tools SME
Key Responsibilities:
Architect and govern Fortify (SAST/DAST) and Sonatype IQ implementation.
Tools installation, configuration, housekeeping as per the guidelines from OEM.
Develop automation, custom rules, and plugin integrations.
Troubleshoot complex scan or integration issues.
Act as L3 support and mentor for engineering teams.
Work closely with security governance, DevOps, and AppSec teams.
Preparing and following up SOP for housekeeping.
Monitoring and maintenance using the monitoring tools in use at NSE.
Finetuning and benchmarking of the Tool policies for efficient execution.
Skills & Tools:
Deep experience in Fortify SSC/DAST, Sonatype IQ
CI/CD tools: Jenkins, GitHub
Strong SDLC, threat modeling, vulnerability remediation knowledge.
Preferred Qualifications:
Security certifications such as OSCP, GWAPT, eWPTX, CEH, CRTP, or any application security-related certifications.
Familiarity with source code review, threat modeling, and DevSecOps practices is a plus.
Exposure to scripting or automation using Python, Bash, or PowerShell is an advantage.
Job Type: Full-time
Pay: Up to ₹2,000,000.00 per year
Work Location: In person
MNCJobsIndia.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.