23 Webinspect Jobs

Level - L3 Own and govern the end-to-end Vulnerability Management (VM) program Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines Track remediation SLA adherence, escalate overdue issues, and align with stakeholders Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions Oversee secure SDLC enforcement and continuous improvement of security processes Facilitate TPRM alignment and integration into the broader VM landscape Lead cross-functional coordination, metrics-driven governance, and knowledge sharing Perform thread modelling for new applications. Tools / Technology ...

Level - L3 Own and govern the end-to-end Vulnerability Management (VM) program Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines Track remediation SLA adherence, escalate overdue issues, and align with stakeholders Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions Oversee secure SDLC enforcement and continuous improvement of security processes Facilitate TPRM alignment and integration into the broader VM landscape Lead cross-functional coordination, metrics-driven governance, and knowledge sharing Perform thread modelling for new applications. Tools / Technology ...

Level - L3 Own and govern the end-to-end Vulnerability Management (VM) program Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines Track remediation SLA adherence, escalate overdue issues, and align with stakeholders Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions Oversee secure SDLC enforcement and continuous improvement of security processes Facilitate TPRM alignment and integration into the broader VM landscape Lead cross-functional coordination, metrics-driven governance, and knowledge sharing Perform thread modelling for new applications. Tools / Technology ...

Level - L3 Own and govern the end-to-end Vulnerability Management (VM) program Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines Track remediation SLA adherence, escalate overdue issues, and align with stakeholders Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions Oversee secure SDLC enforcement and continuous improvement of security processes Facilitate TPRM alignment and integration into the broader VM landscape Lead cross-functional coordination, metrics-driven governance, and knowledge sharing Perform thread modelling for new applications. Tools / Technology ...

Level - L3 Own and govern the end-to-end Vulnerability Management (VM) program Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines Track remediation SLA adherence, escalate overdue issues, and align with stakeholders Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions Oversee secure SDLC enforcement and continuous improvement of security processes Facilitate TPRM alignment and integration into the broader VM landscape Lead cross-functional coordination, metrics-driven governance, and knowledge sharing Perform thread modelling for new applications. Tools / Technology ...

About The Role Project Role : Architecture Assessment Lead Project Role Description : Leads the execution of architecture assessments for all relevant aspects (ex., infrastructure, platform, application, data, and process). Defines the assessment scope and gains client agreement. Leads and describes the discovery assessment and provides the recommendation to address weaknesses and opportunities. Must have skills : DevOps Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Architecture Assessment Lead, you will be responsible for leading the execution of architecture assessments across various domains, in...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Application Security Architecture and Design Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for a Technical Lead with strong expertise in Application and Infrastructure Security to lead a suite of security services including vulnerability management, application secu...

Position Description: Responsibilities Direct Responsibilities Strong expertise in application security concepts and activities like Source Code Review (SAST) & Dynamic application vulnerability scanning (DAST). Good understanding of Information Security concepts and strategies. Knowledge of Secure Development methodologies and frameworks. Hands-on experience in penetration testing and tools like Apisan, WebInspect, Fortify, AppSpider, BurpSuite, Qualys, Checkmarx, Coverity Well-versed in conducting Security Review, Assessments and providing recommendations. Knowledge of OWASP, SANS standards. Executing IT risk assessment reviews, identifying controls gaps and working in collaboration with s...

Educational Requirements Bachelor of Engineering Service Line Infosys Quality Engineering Responsibilities Hands-on knowledge of Security testing methodologies like OWASP Top 10, SANS 25 etc., Ability to perform automated and manual hands-on penetration security testing e.g. DAST, SAST and SCA, identifying security risks within applications, cloud infrastructure, security controls and Network systems. Additional Responsibilities: The successful candidate must be highly motivated, fast learner, flexible, willing to assume responsibility and deliver quality work on time Constantly identify opportunities for enhancing productivity using automation and process improvements. Exposure to scripting...

Position Purpose The purpose of the position is to help with the information security topics mentioned in the direct responsibilities. Responsibilities Direct Responsibilities - Executing IT risk assessment reviews, identifying controls gaps and working in collaboration with subject matter experts to devise appropriate mitigation plans. Identifying key risk trends, issues and other insights requiring further investigation and following up with Technology as appropriate. Knowledge of Secure Development methodologies and frameworks. Hands-on experience in penetration testing and tools like AppScan, Webinspect, Fortify, AppSpider, BurpSuite, Qualys, Checkmarx, Coverity Well-versed in conducting...

Educational Requirements Bachelor of Engineering Service Line Infosys Quality Engineering Responsibilities Hands-on knowledge of Security testing methodologies like OWASP Top 10, SANS 25 etc., Ability to perform automated and manual hands-on penetration security testing e.g. DAST, SAST and SCA, identifying security risks within applications, cloud infrastructure, security controls and Network systems. Additional Responsibilities: The successful candidate must be highly motivated, fast learner, flexible, willing to assume responsibility and deliver quality work on time Constantly identify opportunities for enhancing productivity using automation and process improvements. Exposure to scripting...

What you will do Review and triage new vulnerability tickets to validate the impact. Assist users by providing security guidance for remediation of Vulnerabilities. Validate remediation efforts from internal customers. Investigate possible security exceptions. Update, maintain and document security controls. Ensure application teams are implementing remediations within SLA Maintain documentation of work performed and remediation actions using ServiceNow ticketing system What you should possess Strong customer focus with the ability to advise and work closely with application teams and vendors on mitigation. Exposure to commercial and open-source tools such as Burpsuite, WebInspect, , Qualys,...

As a highly organized Cybersecurity Officer at AmeriPharma, you will play a crucial role in managing system-wide healthcare compliance, information security, and privacy regulations. Reporting to the Director of Regulatory Affairs, you will be responsible for ensuring regulatory excellence, information security, and adherence to federal and state laws. Your primary focus will be on fostering a culture of accountability, trust, and risk management across all IT infrastructures. Your duties will involve developing and managing a comprehensive cybersecurity program in compliance with regulations such as HITECH, providing cybersecurity support during software and network development, conducting ...

Your Impact: Fortify on Demand is an end-to-end platform for all your AppSec needs. We are the only application security provider to offer SAST, SCA, DAST, IAST, and MAST as a service. We help our customers to achieve fast remediation throughout the software lifecycle with robust assessments by a team of security experts. Experience in Production Operations (or Support), driving Incident management calls for escalations are a must. What it takes: This is a Principal technical support engineer role in the Fortify on Demand team, with a goal to provide the highest level of customer satisfaction. As an Enterprise Support Engineer, you will act as a single point of contact your assigned customer...

Your Impact As part of the Product Security team, you must have a strong understanding of information security processes across product development lifecycle including secure coding principle, static code / dynamic scanning, application penetration testing, container security, cloud security, supply chain security and threat modelling the applications. You should be familiar with the industry best practices for information security policies and product security. standards. You will have the opportunity to collaborate with the product stakeholders such as product development, cloud operation, system architects, security champions, Global Information Security on the Product security process an...

YOUR IMPACT As part of the Product Security team, you must have a strong understanding of information security processes across product development lifecycle including secure coding principle, static code / dynamic scanning, application penetration testing, container security, cloud security, supply chain security and threat modelling the applications. You should be familiar with the industry best practices for information security policies and product security. standards. You will have the opportunity to collaborate with the product stakeholders such as product development, cloud operation, system architects, security champions, Global Information Security on the Product security process an...

Job Title: WebPT P1 - Consultant Location: Bangalore & Pune (Hybrid Role) Contract Duration: 6 Months Roles & Responsibilities: Perform automated testing of running applications and static code (SAST, DAST). Conduct manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: Web applications Internal applications APIs Internal and external networks Mobile applications Experience in one or more of the following is a plus: Mobile application testing Web application pen testing Application architecture Business logic analysis Work on application tools to perform security tests, including: AppScan NetsSparker Acunetix Checkmarx Veracode BurpSuite...

Dear Candidate, We are hiring a Compliance Engineer to ensure code and dependencies meet licensing and audit standards. Key Responsibilities: Track open-source usage and license compliance. Automate compliance scanning and reporting. Assist in security reviews and audits. Required Skills & Qualifications: Familiarity with tools like FOSSA, Black Duck. Knowledge of OSS licenses (MIT, GPL, Apache). Experience with code scanning and SBOMs. Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Delivery Manager Integra Technologies

Comcast brings together the best in media and technology We drive innovation to create the world's best entertainment and online experiences As a Fortune 50 leader, we set the pace in a variety of innovative and fascinating businesses and create career opportunities across a wide range of locations and disciplines We are at the forefront of change and move at an amazing pace, thanks to our remarkable people, who bring cutting-edge products and services to life for millions of customers every day If you share in our passion for teamwork, our vision to revolutionize industries and our goal to lead the future in media and technology, we want you to fast-forward your career at Comcast Job Summar...

Position Purpose The purpose of the position is to help with the information security topics mentioned in the direct responsibilities. Responsibilities Direct Responsibilities - Executing IT risk assessment reviews, identifying controls gaps and working in collaboration with subject matter experts to devise appropriate mitigation plans. Identifying key risk trends, issues and other insights requiring further investigation and following up with Technology as appropriate. Knowledge of Secure Development methodologies and frameworks. Hands-on experience in penetration testing and tools like AppScan, Webinspect, Fortify, AppSpider, BurpSuite, Qualys, Checkmarx, Coverity Well-versed in conducting...

Educational Requirements Bachelor of Engineering Service Line Infosys Quality Engineering Responsibilities Hands-on knowledge of Security testing methodologies like OWASP Top 10, SANS 25 etc., Ability to perform automated and manual hands-on penetration security testing e.g. DAST, SAST and SCA, identifying security risks within applications, cloud infrastructure, security controls and Network systems. Additional Responsibilities: The successful candidate must be highly motivated, fast learner, flexible, willing to assume responsibility and deliver quality work on time Constantly identify opportunities for enhancing productivity using automation and process improvements. Exposure to scripting...

Dear Candidate, We are hiring a Penetration Tester to simulate attacks and discover security vulnerabilities in critical systems. Perfect for professionals skilled in offensive security techniques. Key Responsibilities: Conduct penetration tests on web, mobile, and network systems Document vulnerabilities and remediation recommendations Develop exploits and custom testing tools Collaborate with developers to address findings Required Skills & Qualifications: Proficiency with penetration testing tools (Burp Suite, Metasploit, Nmap) Strong understanding of application and network security Experience writing exploit scripts (Python, Bash) Bonus: OSCP, OSWE, or CEH certification Soft Skills: Str...

Dear Candidate, We are hiring a Security Engineer to design and implement secure systems across cloud and application environments. Ideal for engineers excited about threat modeling and proactive defense. Key Responsibilities: Perform security assessments and code reviews Develop security policies and incident response procedures Implement security controls in cloud and on-prem environments Monitor for vulnerabilities and recommend mitigation Required Skills & Qualifications: Knowledge of OWASP Top 10, secure coding practices Experience with SIEM, IDS/IPS, and vulnerability scanners Familiarity with cloud security (AWS, Azure, GCP) Bonus: Certifications (CISSP, CEH, OSCP) Soft Skills: Strong...