- Execute and support application vulnerability assessments (SAST, DAST, SCA, and manual code review).
- Validate scanner results, perform false-positive analysis, and track findings through remediation.
- Manage multiple application security initiatives concurrently while meeting strict timelines.
- Prioritize vulnerabilities based on business impact, exploitability, and exposure using CVSS.
- Develop and maintain dashboards and reports tracking vulnerability metrics.
- Support the integration of security scanning and vulnerability workflows into CI/CD pipelines.
- Facilitate remediation planning and coordinate root cause analysis.
- Support threat modeling and application risk assessments.
- Participate in high-severity or zero-day vulnerability response activities.
- Provide input into policies and standards related to application and cloud security.
PythonJavaCI/CD