- Perform threat modeling, security architecture review, and design analysis for web applications and APIs
- Conduct manual and automated security testing during development and pre-release stages
- Design and implement security pipelines (including SAST and DAST) and integrate them into the SDLC process
- Implement and manage SBOM generation and consumption processes across the SDLC
- Collaborate with development teams to ensure timely remediation of identified vulnerabilities
- Maintain security guidance aligned with OWASP best practices and provide trainings for development teams
- Stay current with evolving application security threats, tools, and industry developments
PythonJavascriptC#+1 more