Job Summary
We are seeking a highly skilled and motivated Appsec/DevSecOps Engineer to join our cybersecurity architecture and engineering team. This role is crucial for integrating security into our DevOps processes ensuring the safety and compliance of our software development and deployment in the life sciences and pharmaceutical sectors.
Responsibilities
Deep knowledge of application security by adhering to OWASP top 10 and secure coding practices.
1. Identify and mitigate vulnerabilities using tools like OWASP ZAP Burp Suite and Nessus
2. Strong understanding or experience in API security and attack vectors.
3. Strong in Secure CI/CD pipelines using Jenkins GitLab CI/CD and AWS CodePipeline.
4. Deep knowledge of container security: Ensure the security of containerized applications using Docker and Kubernetes.5. Deep understanding of Serverless Workloads and Orchestration tools (AWS Lambda Azure Functions Kubernetes HELM)
6. Effectively communicate with stakeholders and internal customers.
1. Knowledgeable of security frameworks (NIST ISO 27001 PCI DSS HIPAA GDPR).
2. Knowledge of preferred experience with FDA GxP regulations.
3. Knowledgeable in Conduct gap assessments and develop remediation plans.
4. Secure cloud environments (AWS Azure GCP) using tools like AWS Security Hub Azure Security Center and other cloud-based tools.
4. Strong knowledge of IaC tools to manage multi-cloud configurations (AWS Azure) like Terraform Ansible and CloudFormation.
5. Highly experienced in Automate security tasks and incident response using scripting languages (Bash Python PowerShell).
6. Experience in monitoring tools like Prometheus Grafana and ELK Stack to detect and respond to security incidents.
7. Experience in Secure CI/CD pipelines and implement SAST and DAST.
8. Manage multiple security projects simultaneously.
Qualifications
1. Strong understanding of networking cryptography and security protocols.
2. Exceptional analytical skills problem-solving abilities and attention to details.
1. CDP CDE CSSLP (Certified Secure Software Lifecycle Professional) or equivalent
2. Strong knowledge of cloud platforms (AWS Azure). AWS/Azure Certified Security Specialist preferred.
The Cognizant community:
We are a high caliber team who appreciate and support one another. Our people uphold an energetic, collaborative and inclusive workplace where everyone can thrive.
About us:
Cognizant is one of the world's leading professional services companies, transforming clients' business, operating, and technology models for the digital era. Our unique industry-based, consultative approach helps clients envision, build, and run more innovative and efficient businesses. Headquartered in the U.S., Cognizant (a member of the NASDAQ-100 and one of Forbes World’s Best Employers 2024) is consistently listed among the most admired companies in the world. Learn how Cognizant helps clients lead with digital at www.cognizant.com
Our commitment to diversity and inclusion:
Cognizant is an equal opportunity employer that embraces diversity, champions equity and values inclusion. We are dedicated to nurturing a community where everyone feels heard, accepted and welcome. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other protected characteristic as outlined by federal, state or local laws.
Disclaimer:
Compensation information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.
Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government issued ID during each interview.