Senior Product Software Engineer (Secure SDLC, Application security, OWASP ASVS)

Senior Product Software Engineer (Secure SDLC, Application security, OWASP ASVS)

Wolters Kluwer India Private Limited
5-10 years
Not Specified

Job Description


Job Description:
Responsibilities

  • Ensure compliance with Wolters Kluwer and Divisional Application Security Policies and Standards

  • Facilitate adoption and integration of SSDLC best practices

  • Support the tracking, planning, and remediation of application security findings.

  • Consistently improve application security by leading gradual reduction of the security technical debt, remediate known vulnerabilities

  • Provide input and advice on Application Security Exception Requests

  • Responsible for tracking of security program requirements

  • Responsible for maintaining clear and very active lines of communication with advisors and decision makers during a software development project.

  • Integrate and maintain threat modeling and security architecture design review as key elements of SDLC per application.

  • Sign off on security sensitive aspects of architecture and implementation.

  • Ensure compliance with the Wolters Kluwer Open Source policy and Open Source policy Exception Management process

  • Assist in facilitating the security training program.

Domain Knowledge​

  • Application development, Secure SDLC​

  • Application security, security standards, OWASP ASVS​​

Education qualifications

  • Bachelor's degree (B.E/ B Tech. Computer Science) from a four-year college or university, or equivalent, Masters a plus.

Expertise

  • Working experience of 5-10 years in development.

  • Experience working with Full stack development ecosystem , one of the following : front end development technologies like Javascript /Typescript with frameworks - Angular/React Backend services development in either Nodejs/Java or Dot Net).

  • Knowledge of Security best practices​

  • Thorough understanding of threats and attack vectors against web applications.​

  • Threat analysis and modeling​.

  • Cryptography, database encryption, cloud encryption​

  • Technical writing (investigation and documentation of the security tools and techniques being used)​

  • Static/dynamic code analysis, penetration testing and common security tools.​

  • Experience in identifying and remediating common web application vulnerabilities such as OWASP Top 10​​

Soft Skills

  • Critical thinking​

  • Ability to prioritize work​

  • Good verbal and written English​

  • Collaborative, team player​

  • Proactive self starter

Job Details

Employment Types:

Industry:

Function:

IT

Wolters Kluwer (AEX: WKL) is a leading global provider of information, software, and services for professionals. We serve customers in more than 180 countries, operating through four divisions: Health Tax & Accounting Governance, Risk & Compliance and Legal & Regulatory. The Company is committed to helping professionals improve the way they do business and solve complex problems with confidence in an ever-changing world. Wolters Kluwer reported 2020 annual revenues of €4.6 billion, employs over 19,000 people worldwide and maintains operations in over 40 countries. The company is headquartered in Alphen aan den Rijn, the Netherlands. Wolters Kluwer shares are listed on Euronext Amsterdam (WKL) and are included in the AEX and Euronext 100 indices. For more information about our solutions and organization, visit www.wolterskluwer.com , follow us on Twitter , Facebook , and LinkedIn . EQUAL EMPLOYMENT OPPORTUNITY Wolters Kluwer and all of its subsidiaries, divisions and customer/business units is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or any other protected status. GDPR

Similar Jobs

People Also Considered

Data Not Available

Career Advice to Find Better

Simple body text this will replace with orginal content