DevSecOps Manager – Security Testing SME Job Vacancy in Fortive Corporate Bengaluru, Karnataka – Updated today
Are you looking for a New Job or Looking for better opportunities?
We got a New Job Opening for
Full Details :
Company Name : Fortive Corporate
Location : Bengaluru, Karnataka
Position :
Job Description : Fortive is currently seeking a seasoned DevSecOps Manager to join the growing global Security team.
We are looking for an experienced DevSecOps Manager – Security Testing Subject Matter Expert to join
our Product Security function to provide guidance, support and measurement as it relates to secure
design, secure coding, security testing and automation to enable DevOps teams to securely build
software applications and systems. You will work with management, product development engineering,
and operations teams on cross-functional projects throughout the organization to enhance the security
posture across the enterprise product portfolio, perform training, add context and priority to security
related findings, and support the Incident Response team as needed. This role requires enthusiasm,
attention to detail, and an insatiable commitment for positive outcomes.
This position will report directly to the director of product security.
Key Duties and Responsibilities:
Ownership of the Security Testing Program including the ownership for the development, testing,
and delivery of processes and tools to streamline security testing practices, tooling,
implementation, and continuous compliance.
Act as a security advisor to developers, architects, engineers, security engineers and other
stakeholders to ensure we design confidentiality, integrity, resiliency, and privacy into Fortive’s
products and services.
Build, train and mentor product developers, engineers, and DevOps teams across the enterprise
in security testing practices and remediation.
Work with the product teams to support proactive research in the area of security testing and
integrate new security testing tools and processes to mitigate new emerging threats,
vulnerabilities, tactics, techniques and procedures.
Integrate Security Testing toolsets into product teams CI/CD pipelines. Integrate DAST findings into product team agile management tooling (e.g., Jira)
Create Key Performance Indicators (KPI) to accurately measure cyber security activities aligned
with current business strategies and risk management frameworks.
Work with standardization and regulatory frameworks such as FedRAMP, ISO 27001, CIS Critical
Security Controls, NIST CSF frameworks, Cloud Security Alliance, PCI DSS, GDPR
Other duties and obligations as assigned by the Director of Product Security
Minimum Qualifications
Demonstrated experience managing security testing initiatives in a highly fluid enterprise-level product
and service development environment; Experience managing vendors and service providers and
performing oversight for the delivery of security capabilities; Significant technical knowledge of product
security testing, penetration testing, web application security testing, security testing standards, product
security programs, concepts, processes, trends, and best practices; Demonstrated knowledge of aligning
secure coding practices with current compliance frameworks.
Preferred Qualifications:
8-15 years relevant experience
Strong background in product security testing; deep knowledge of security standards, protocols
and methodologies
Excellent problem-solving and analytical skills with the ability to evolve product security and
security testing practices based on research, data, and industry trends
Mastery level experience testing a variety of platforms including Web Applications, SaaS,
Microservices, databases, Application programing interfaces, associated security testing reporting
and remediation, mapping security testing standards to practices which satisfy security
requirements, coordinating efforts to scope, implement then deploying security testing practices in
automated ci/cd environments
Strong focus on API security testing and Web Application security testing
Strong communication and presentation skills with the ability to interact at all levels of the
organization.
Proven success managing cross-functional enterprise security programs
Possess a passion and drive for cyber-security, with an active interest and knowledge of current
trends and emergent threats
Experience on Orchestration/automation solutions would be helpful.
Strong ethics, integrity, attention to detail, and self-motivation to succeed against challenges
Proven capability and desire to diligently deliver high quality work, as an individual or part of a
team, to agreed specifications and timelines
Demonstrable strong verbal and written communication skills, when communicating with peers,
seniors, juniors, or customers
Experience in product development, quality assurance, or a Security related role within a product
development team.
Familiarity, understanding and demonstration of the “attacker mind-set”, towards providing better
testing coverage against threats.
Fortive is headquartered in Everett, Washington, and employs more than 17,000 research and development, manufacturing, sales, distribution, service, and administrative employees in more than 40 countries worldwide. Our team grows by tackling challenges that accelerate progress and further their careers. With a culture rooted in continuous improvement, the core of our company’s operating model is the Fortive Business System. For more information, please visit: www.fortive.com .
About Fortive:
Fortive is a diversified industrial growth company comprised of global businesses that are recognized leaders in attractive markets. With more than $5 billion in annual revenues, Fortive’s well-known brands hold leading positions in field instrumentation, transportation, sensing, product realization, automation, health, and franchise distribution.
This post is listed Under Technology
Disclaimer : Hugeshout works to publish latest job info only and is no where responsible for any errors. Users must Research on their own before joining any company