6 Microfocus Fortify Jobs

Level - L3 Own and govern the end-to-end Vulnerability Management (VM) program Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines Track remediation SLA adherence, escalate overdue issues, and align with stakeholders Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions Oversee secure SDLC enforcement and continuous improvement of security processes Facilitate TPRM alignment and integration into the broader VM landscape Lead cross-functional coordination, metrics-driven governance, and knowledge sharing Perform thread modelling for new applications. Tools / Technology ...

Level - L3 Own and govern the end-to-end Vulnerability Management (VM) program Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines Track remediation SLA adherence, escalate overdue issues, and align with stakeholders Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions Oversee secure SDLC enforcement and continuous improvement of security processes Facilitate TPRM alignment and integration into the broader VM landscape Lead cross-functional coordination, metrics-driven governance, and knowledge sharing Perform thread modelling for new applications. Tools / Technology ...

Level - L3 Own and govern the end-to-end Vulnerability Management (VM) program Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines Track remediation SLA adherence, escalate overdue issues, and align with stakeholders Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions Oversee secure SDLC enforcement and continuous improvement of security processes Facilitate TPRM alignment and integration into the broader VM landscape Lead cross-functional coordination, metrics-driven governance, and knowledge sharing Perform thread modelling for new applications. Tools / Technology ...

Level - L3 Own and govern the end-to-end Vulnerability Management (VM) program Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines Track remediation SLA adherence, escalate overdue issues, and align with stakeholders Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions Oversee secure SDLC enforcement and continuous improvement of security processes Facilitate TPRM alignment and integration into the broader VM landscape Lead cross-functional coordination, metrics-driven governance, and knowledge sharing Perform thread modelling for new applications. Tools / Technology ...

Level - L3 Own and govern the end-to-end Vulnerability Management (VM) program Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines Track remediation SLA adherence, escalate overdue issues, and align with stakeholders Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions Oversee secure SDLC enforcement and continuous improvement of security processes Facilitate TPRM alignment and integration into the broader VM landscape Lead cross-functional coordination, metrics-driven governance, and knowledge sharing Perform thread modelling for new applications. Tools / Technology ...

You are a skilled CyberSecurity Business Analyst specializing in IAM & Secrets Management, sought to join a dynamic cybersecurity team. Your primary responsibility will be managing and enhancing Identity & Access Management (IAM) controls with a major focus on Secrets Management, access governance, and compliance reporting within a highly regulated environment. Your key responsibilities will include defining and enhancing secrets management controls across machine-to-machine authentication systems, supporting IAM operations by maintaining access governance for credentials, keys, and tokens, and providing subject matter expertise on secrets and credential management tools and best practices. ...