Off Board Security Architect - Application Security

As an Off Board Security Architect (Application Security) at CNH Industrial, you will play a crucial role in defending and securing the technical environment by leveraging your expertise in Application Security and CI/CD best practices. Your responsibilities will include: - Acting as a Subject Matter Expert (SME) in Application Security and CI/CD best practices within the technical solutions team - Identifying and mitigating potential security risks and vulnerabilities across the CNH Application landscape - Developing and maintaining software application security policies, secure software development guidelines, vulnerability management programs, and risk mitigation guidelines - Enhancing Application Security activities such as Vulnerability Scanning, Certificate Management, Data Analysis, Remediation Patching, and other Security and Compliance efforts - Designing, implementing, and maintaining CI/CD pipelines for DevSecOps projects - Supporting the operationalization of cloud-hosted applications and maturing the delivery tech stack - Collaborating with cross-functional teams to apply diverse AppSec skill sets and ensure successful performance across operations and projects - Working with software developers and engineers to ensure development follows established security processes - Generating and maintaining programmatic and technical security documentation - Staying updated on laws, regulations, industry standards, and ethical requirements related to privacy and information security for CNH products and services - Providing business and technical advice on risk issues and ensuring information security is integrated into all business processes Qualifications required for this role include: - Degree in computer science, computer engineering, or a technology-related field - Professional security management certification (e.g., CISSP, CISM) is desirable - 3+ years of experience in cyber security roles with a background in software security or development - Experience with CI/CD Automation tools like Azure DevOps, Jenkins, and GitLab - Experience in API Security, Container Security, or Microsoft Azure Cloud Security - Experience working with Developers, DevOps, and Engineering teams to promote/implement DevSecOps - Experience in coordinating and performing vulnerability assessments using tools like Rapid7, NMAP, Fortify, etc. - Familiarity with Information Security frameworks/standards (CIS, NIST, OWASP) and Windows/Linux patch management - Hands-on experience with SAFe Project Management tools (e.g., Jira) and scripting languages like Go, Bash, Python Join CNH Industrial in Gurgaon for a full-time role and bring your 3-5 years of experience in Information Technology to contribute to the organization's growth and security initiatives.,