3-5 years of experience in application development and security remediation.
Experience with vulnerability remediation in languages like Java, JavaScript, Node.js and MuleSoft.
In-depth knowledge of GHAS, SonarQube, and other static/dynamic analysis tools.
Review and analyze security vulnerabilities reported by GHAS and SonarQube scans.
Prioritize and remediate issues ranging from code quality to critical vulnerabilities in applications
Collaborate with development teams to ensure secure coding practices and recommend solutions for vulnerability mitigation.
Validate and test vulnerability fixes to ensure security standards are met.
Maintain a repository of security fixes and provide documentation for security best practices.
Solid understanding of secure coding practices and OWASP Top 10 vulnerabilities.
Ability to collaborate with developers and DevOps teams to implement fixes.
Knowledge of CI/CD pipeline integration and automation.
Familiarity with container security (Docker, Kubernetes).
Hands-on experience with security frameworks like SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing).
Certifications such as Certified Ethical Hacker (CEH) or Certified Information Systems ecurity Professional (CISSP) are a plus

Key Skills