4 Secrets Detection Jobs

JOB DESCRIPTION Are you ready to make an impact at DTCC Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve. Pay and Benefits: Competitive compensation, including base pay and annual incentive Comprehensive health and life insurance and well-being benefits, based on location Pension / Retirement benefits Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being. The Impact you will have in this role: Technology Risk Management (TRM) is responsible for setting strategic direction in the areas of IT Risk and Information Security. Maintains corporate security policies and control standards, acts as a second line of defense via a robust collection of risk and control assessments, reports to leadership and the Board on the status of the IT Risk and Information Security Programs, acts as an operational arm for monitoring threat intelligence, understanding when threats are being targeted against the firm, and responding to potential incidents, and serves as the main interface for Regulatory and Client reviews that focus on IT Risk and Information Security. The Application Security Assurance program implements a variety of AppSec (Application Security) technologies, controls, tools and processes to ensure delivery teams are able to adhere and align with the Secure System Development Lifecycle to protect DTCC applications from exisiting and emerging security risks & improve application risk posture. Your Primary Responsibilities: Set up, customize, and maintainSAST tools(e.g., SonarQube, Fortify, Checkmarx, Veracode) to align with project-specific requirements. Performmanual and automated code reviewsto identify and advise on secure coding issues. Integrate SAST tools intoCI/CD pipelines(Jenkins, GitHub Actions, GitLab CI, etc.) to support shift-left security. Work with development teams tofine-tune SAST rules, reduce false positives, and ensure meaningful results. Assist developers in understanding and fixing security issues by providing actionable feedback. Implement basic security checks forInfrastructure as Code (IaC)and secrets detection in repositories. Collaborate with DevOps teams to ensuresecurity tooling is seamlessly embeddedinto build and deployment workflows. Qualifications: Minimum of 4 years of related experience Bachelor's degree preferred or equivalent experience Talents Needed for Success: Fosters a culture where honesty and transparency are expected. Stays current on changes in his/her own specialist area and seeks out learning opportunities to ensure knowledge is up-to-date. Collaborates well within and across teams. Communicates openly with team members and others. Resolves disagreements between colleagues effectively, minimizing the impact on the wider team. .

Harness is a high-growth company that is disrupting the software delivery market. Our mission is to enable the 30 million software developers in the world to deliver code to their users reliably, efficiently, securely and quickly, increasing customers pace of innovation while improving the developer experience. We offer solutions for every step of the software delivery lifecycle to build, test, secure, deploy and manage reliability, feature flags and cloud costs. The Harness Software Delivery Platform includes modules for CI, CD, Cloud Cost Management, Feature Flags, Service Reliability Management, Security Testing Orchestration, Chaos Engineering, Software Engineering Insights and continues to expand at an incredibly fast pace. Harness is led by technologist and entrepreneur Jyoti Bansal, who founded AppDynamics and sold it to Cisco for $3.7B. Were backed with $425M in venture financing from top-tier VC and strategic firms, including J.P. Morgan, Capital One Ventures, Citi Ventures, ServiceNow, Splunk Ventures, Norwest Venture Partners, Adage Capital Partners, Balyasny Asset Management, Gaingels, Harmonic Growth Partners, Menlo Ventures, IVP, Unusual Ventures, GV (formerly Google Ventures), Alkeon Capital, Battery Ventures, Sorenson Capital, Thomvest Ventures and Silicon Valley Bank. Position Summary We are looking for a Senior Product Manager to lead the strategy, roadmap, and delivery of our Traceable Application Security Testing module . This role focuses on building next-generation solutions across SAST, Secrets Detection, Container Security, DAST, and API Security Testing . You will work with engineering, customers, and cross-functional teams to ship products that secure modern applications at scale. Key Responsibilities Own the vision, strategy, and roadmap for the Traceable AppSec Testing product line. Define and prioritize features for SAST, Secrets Detection, Container Security, DAST, and API Security Testing. Partner closely with engineering to deliver high-quality, secure, and scalable products. Engage directly with customers to understand their security workflows, pain points, and priorities. Collaborate with marketing, sales, and support teams to ensure successful product launches and adoption. Track competitive trends and emerging threats to inform product direction. Define and measure success metrics and drive continuous improvement. About You 6-10 years of product management experience, including building and shipping enterprise security or developer products. Strong knowledge of DevSecOps practices and Application Security (AppSec) especially SAST, DAST, secrets detection, container security, and API security. Proven ability to drive product strategy and translate customer needs into actionable requirements. Strong communication, collaboration, and stakeholder management skills. Experience working with technical users such as developers, security engineers, and DevOps teams. Preferred Qualifications Experience with CI/CD, cloud-native security, Kubernetes, or software supply chain security. Background in software development or security engineering (a plus). Work Location Bangalore. The successful candidate will be expected to be in the Bangalore office 3x/ week. What You Will Have At Harness Experience building a transformative product End-to-end ownership of your projects Competitive salary Comprehensive healthcare benefit Flexible work schedule Quarterly Harness TGIF-Off / 4 days Paid Time Off and Parental Leave Monthly, quarterly, and annual social and team building events Monthly internet reimbursement Harness In The News Harness Grabs a $150m Line of Credit Welcome Split! SF Business Times - 2024 - 100 Fastest-Growing Private Companies in the Bay Area Forbes - 2024 America&aposs Best Startup Employers SF Business Times - 2024 Fastest Growing Private Companies Awards Fast Co - 2024 100 Best Workplaces for Innovators All qualified applicants will receive consideration for employment without regard to race, color, religion, sex or national origin. Note on Fraudulent Recruiting/Offers We have become aware that there may be fraudulent recruiting attempts being made by people posing as representatives of Harness. These scams may involve fake job postings, unsolicited emails, or messages claiming to be from our recruiters or hiring managers. Please note, we do not ask for sensitive or financial information via chat, text, or social media, and any email communications will come from the domain @harness.io. Additionally, Harness will never ask for any payment, fee to be paid, or purchases to be made by a job applicant. All applicants are encouraged to apply directly to our open jobs via our website. Interviews are generally conducted via Zoom video conference unless the candidate requests other accommodations. If you believe that you have been the target of an interview/offer scam by someone posing as a representative of Harness, please do not provide any personal or financial information and contact us immediately at [HIDDEN TEXT]. You can also find additional information about this type of scam and report any fraudulent employment offers via the Federal Trade Commissions website (https://consumer.ftc.gov/articles/job-scams), or you can contact your local law enforcement agency. Show more Show less

Are you ready to make an impact at DTCC Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve. Pay And Benefits Competitive compensation, including base pay and annual incentive Comprehensive health and life insurance and well-being benefits, based on location Pension / Retirement benefits Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being. DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee). The Impact You Will Have In This Role Technology Risk Management (TRM) is responsible for setting strategic direction in the areas of IT Risk and Information Security. Maintains corporate security policies and control standards, acts as a second line of defense via a robust collection of risk and control assessments, reports to leadership and the Board on the status of the IT Risk and Information Security Programs, acts as an operational arm for monitoring threat intelligence, understanding when threats are being targeted against the firm, and responding to potential incidents, and serves as the main interface for Regulatory and Client reviews that focus on IT Risk and Information Security. The Application Security Assurance program implements a variety of AppSec (Application Security) technologies, controls, tools and processes to ensure delivery teams are able to adhere and align with the Secure System Development Lifecycle to protect DTCC applications from exisiting and emerging security risks & improve application risk posture. Your Primary Responsibilities Set up, customize, and maintain SAST tools (e.g., SonarQube, Fortify, Checkmarx, Veracode) to align with project-specific requirements. Perform manual and automated code reviews to identify and advise on secure coding issues. Integrate SAST tools into CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI, etc.) to support shift-left security. Work with development teams to fine-tune SAST rules, reduce false positives, and ensure meaningful results. Assist developers in understanding and fixing security issues by providing actionable feedback. Implement basic security checks for Infrastructure as Code (IaC) and secrets detection in repositories. Collaborate with DevOps teams to ensure security tooling is seamlessly embedded into build and deployment workflows. Qualifications Minimum of 4 years of related experience Bachelor&aposs degree preferred or equivalent experience Talents Needed For Success Fosters a culture where honesty and transparency are expected. Stays current on changes in his/her own specialist area and seeks out learning opportunities to ensure knowledge is up-to-date. Collaborates well within and across teams. Communicates openly with team members and others. Resolves disagreements between colleagues effectively, minimizing the impact on the wider team. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. Show more Show less

Harness is a high-growth company that is disrupting the software delivery market. The mission at Harness is to enable the 30 million software developers in the world to deliver code to their users reliably, efficiently, securely, and quickly. This not only increases customers" pace of innovation but also improves the developer experience. Harness offers solutions for every step of the software delivery lifecycle, including building, testing, securing, deploying, and managing reliability, feature flags, and cloud costs. The Harness Software Delivery Platform encompasses modules for CI, CD, Cloud Cost Management, Feature Flags, Service Reliability Management, Security Testing Orchestration, Chaos Engineering, Software Engineering Insights, and is expanding rapidly. Led by technologist and entrepreneur Jyoti Bansal, who previously founded AppDynamics and sold it to Cisco for $3.7B, Harness is backed with $425M in venture financing from top-tier VC and strategic firms. Some of the notable backers include J.P. Morgan, Capital One Ventures, Citi Ventures, ServiceNow, Splunk Ventures, Norwest Venture Partners, and many others. **About The Role** Harness is seeking a Senior Product Manager to spearhead the strategy, roadmap, and delivery of the Traceable Application Security Testing module. The focus of this role is on developing cutting-edge solutions across SAST, Secrets Detection, Container Security, DAST, and API Security Testing. The Senior Product Manager will collaborate with engineering, customers, and cross-functional teams to launch products that enhance the security of modern applications at scale. **Key Responsibilities** - Own the vision, strategy, and roadmap for the Traceable AppSec Testing product line. - Define and prioritize features for SAST, Secrets Detection, Container Security, DAST, and API Security Testing. - Collaborate closely with engineering to ensure the delivery of high-quality, secure, and scalable products. - Engage directly with customers to grasp their security workflows, pain points, and priorities. - Work with marketing, sales, and support teams to orchestrate successful product launches and drive adoption. - Keep abreast of competitive trends and emerging threats to steer product direction. - Establish and measure success metrics while driving continuous improvement. **Required Qualifications** - 6-10 years of product management experience, with a focus on building and releasing enterprise security or developer products. - Profound understanding of DevSecOps practices and Application Security (AppSec), particularly in SAST, DAST, secrets detection, container security, and API security. - Demonstrated ability to shape product strategy and translate customer needs into actionable requirements. - Excellent communication, collaboration, and stakeholder management skills. - Experience collaborating with technical users such as developers, security engineers, and DevOps teams. **Preferred Qualifications** - Familiarity with CI/CD, cloud-native security, Kubernetes, or software supply chain security. - Background in software development or security engineering is a plus. **Work Location** The successful candidate for this role will be expected to be present in the Bangalore office three times a week. At Harness, you can expect: - Experience in building a transformative product - End-to-end ownership of your projects - Competitive salary - Comprehensive healthcare benefits - Flexible work schedule - Quarterly Harness TGIF-Off for four days - Paid Time Off and Parental Leave - Monthly, quarterly, and annual social and team building events - Monthly internet reimbursement **Harness In The News** - Harness Grabs a $150m Line of Credit - Welcome Split! - SF Business Times - 2024 - 100 Fastest-Growing Private Companies in the Bay Area - Forbes - 2024 America's Best Startup Employers - SF Business Times - 2024 Fastest Growing Private Companies Awards - Fast Co - 2024 100 Best Workplaces for Innovators *Note on Fraudulent Recruiting/Offers* If you suspect fraudulent recruiting attempts or have received unsolicited emails or messages claiming to be from Harness recruiters or hiring managers, please refrain from providing personal or financial information. Contact Harness immediately at security@harness.io. Further information on this type of scam can be found on the Federal Trade Commission's website. Alternatively, you can reach out to your local law enforcement agency.,