Company Overview:
Req ID: 225861
Job Description:
- Security Scanning Lead is responsible for building & implementation of solution offerings of Security scanning as a service comprising of Source code scanning, Vulnerability Assessment, Penetration Testing and configuration of network, web application, web services, web APIs, mobile application, and thick -client application, Monitoring for client.
- Candidate will be responsible for security scanning solution roadmap & implementation as a consulting stream.
- Build a relationship with client and understand existing and forthcoming security technology consulting services from both a business and technical perspective.
Role Responsibilities
Manages overall project delivery.
Prepares, monitors, and tracks all activities in the project plan with dependencies
Enables activities assignment to team members and reports the status on daily, weekly, and monthly basis with the Company and Humana stakeholders
Works along with tech lead, business analyst, Humana Technology Manager/Tech Lead closely on Deliverables for the success of the project
Point of contact for client team for issues resolution
Manages risks/issues in the project with mitigation/contingency respectively
Safeguards information system assets by identifying and solving potential and actual security problems.
Protects system by defining access privileges, control structures, and resources.
Recognizes problems by identifying abnormalities, reporting violations.
Implements security improvements by assessing current situation; evaluating trends; anticipating requirements.
Determines security violations and inefficiencies by conducting periodic audits.
Upgrades system by implementing and maintaining security controls.
Keeps users informed by preparing performance reports, communicating system status.
Maintains quality service by following organization standards.
Maintains technical knowledge by attending educational workshops, reviewing publications.
Contributes to team effort by accomplishing related results as needed.
Generate status reports periodically
Document critical issues in internal assessment tools
Technical Experience and Skills
- 10+ years Cyber security experience including development experience
- Experience with vulnerability scanning solutions tools - CheckMarx (SAST) and AppScan (DAST)
- Hands on experience on testing of web application, web services, web APIs, mobile application and OS (i.e., Android, iOS, Windows)
- Experience on RASP & IAST (Contrast) tools
- Experience on other tools such as Postman, Soap UI, Burp suite
- Remediation experience on Java, Jscript, JavaScript, Scala etc.
- Desired to have experience on DevSecOps to on-board the scanning components to CI/CD pipelines.
- Hands-on experience analyzing high volumes of logs, network data, and other attack artifacts in support of incident investigations
- Familiarity with the Information Assurance Vulnerability Management program.
- Qualifications and other skills/ competencies:
- Bachelor’s degree in Computer Science, Information Systems, or equivalent education or work experience
- Certifications such as CEH, CISSP, SAFe
- Excellent communication and interaction skills
- Self-initiator, interact, coordinate and collaborate with teams
NTT DATA Services is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.