Descrição do trabalho
- Main Tasks:
- To ensure that vulnerabilities are well understood (how to exploit, no wrong false positive classification…) and remediated
- To check how developers work with Fortify and Nexus IQ: alignment with development’s lifecycle, coverage of the scans
- To challenge the developers, support the remediation and acculturate them with Fortify, Nexus IQ and secure coding best practices
- To develop tooling to automate as much as possible the DevSecOps effectiveness controls
- Technical Skills:
- Application security - Mastery
- Secure coding - Expert
- SAST - Expert
- SCA - Mastery
- development and automatization scripts, i.e python scripting - Expert
- Language Skills
- English -Mastery
- French language is not mandatory but well appreciated - Notions
