Northern Trust logo

Sr. Lead - Attack Surface Management (SSDLC)

10 years

0 Lacs

pune maharashtra india

Posted:5 days ago| Platform: Linkedin logo

Apply

Skills Required

management security leadership governance drive devsecops efficiency development cybersecurity integration devops pipeline schedule remediation coding collaboration engineering compliance support testing software composition analysis azure gitlab jenkins triage analyze training owasp mobile microservices programming java .net python node.js

Work Mode

On-site

Job Type

Full Time

Job Description

Key Responsibilities:


Security Leadership & Governance:

  • Act as the single point of contact for all application security initiatives within the organization. Proactively assess security gaps, develop innovative solutions, and drive DevSecOps transformation to enhance resilience and efficiency.
  • Act as the primary liaison between development and cybersecurity teams to ensure seamless integration of security into the DevOps pipeline Schedule and monitor regular scans across codebases and ensure coverage across all relevant repositories and languages.
  • Review scan results, prioritize findings, and coordinate with development teams for remediation and provide guidance on false positives and secure coding practices.
  • Establish and maintain Secure SDLC practices in collaboration with engineering teams.
  • Provide actionable security recommendations for application security vulnerability. Collaborate with compliance teams to support audits


Technical Responsibilities:

  • Expert in Static Application Security Testing (SAST) and Software Composition Analysis (SCA) and manual penetration testing.
  • Manage and optimize the use of AppSec tools: SAST, DAST, SCA, RASP. Integrate security tools into CI/CD pipelines (e.g., Azure DevOps, GitLab CI/CD, Jenkins).
  • Drive vulnerability triage and remediation with engineering teams. Analyze third-party components and APIs for security risks.


Training & Awareness:

Conduct secure coding workshops, OWASP Top 10 training, and awareness sessions.


Required Skills & Experience:

  • 10+ years of experience in application security/engineering. Deep understanding of OWASP Top 10, CWE, CVE, and common attack vectors (XSS, SQLi, CSRF, etc.).
  • Strong knowledge of application architectures (web, mobile, APIs, microservices). Hands-on experience with security tools (SAST, DAST, SCA, RASP, WAF, etc.).
  • Proficiency in at least one programming language (Java, .NET, Python, Node.js, etc.). Familiarity with DevSecOps pipelines and security automation.

More Jobs at Northern Trust

ServiceNow Developer

Pune, Maharashtra, India

4 - 9 yrs
|

Salary: Not disclosed

Sr. Associate SW Eng

Pune

1 - 3 yrs
|

INR 3 - 5 Lacs

ServiceNow GRC Tech Lead

Pune

12 - 15 yrs
|

INR 8 - 12 Lacs

Sr Analyst, Cyber Sec IT RiskM

Pune

2 - 3 yrs
|

INR 9 - 12 Lacs

Sr Analyst, Cyber Sec ThreatMgmt

Pune

2 - 3 yrs
|

INR 7 - 8 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start DevOps Interview
cta

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Google Play App Store
coding practice

Enhance Your Java Skills

Practice Java coding challenges to boost your skills

Start Practicing Java Now
Northern Trust logo
Northern Trust

Real Estate

Anchorage Alaska

RecommendedJobs for You

Northern Trust logo

Sr. Lead - Attack Surface Management (SSDLC)

Northern Trust

pune, maharashtra, india

Northern Trust logo

Sr. Lead - Attack Surface Management (SSDLC)

Northern Trust

pune, maharashtra, india