https://bayt.page.link/UUF9ELi2eFEqxdXN6
Create a job alert for similar positions

Job Description

Project Role : Security Consulting Lead
Project Role Description : Lead the effort and teams to enable development and implementation of proprietary and innovative security solutions. Assess, manage and ensure compliance to risk reducing behaviors and processes.
Must have skills : Application Security
Good to have skills : Dynamic Application Security Testing (DAST), Static Application Security Testing (SAST)
Minimum 5 year(s) of experience is required
Educational Qualification : 15 years full time education
Summary: As a Security Consulting Lead, you will lead the effort and teams to enable development and implementation of proprietary and innovative security solutions. You will assess, manage, and ensure compliance to risk reducing behaviors and processes. Your typical day will involve providing leadership and guidance to the security consulting team, collaborating with cross-functional teams, and driving the delivery of high-quality security solutions. Roles & Responsibilities: Role: As a Security Architect with expertise in the domain of DevSecOps & Application Security, the candidate will be responsible for: • Identify potential security gaps in the CI/CD and Application design and develop mitigation strategies to ensure both remain secure. • Define security requirements and controls for CI/CD processes and API development. • Collaborate closely with other subject matter experts (SMEs) provide assistance with testing, optimization, and calibration of CI/CD & API controls. • Ensure that security measures align with industry best practices and standards. • Conduct PoC (Proof of Concept) for new tools, providing recommendations to help the business finalize tools that align with business objectives. • Acting as an escalation point for any issues and requests related to security, vulnerabilities, and non-compliances. Must have Skills: • Practical knowledge of CI/CD processes and familiarity with tools like Ansible, SonarQube, Azure DevOps, Jenkins, GitHub, Bitbucket. • SAST, DAST, SCA issues and their practical implementation within CI/CD processes and issues related to authorization, authentication or session management (SAML, OAuth, SSO, etc.). • Experience in addressing web application & API security issues (e.g., OWASP Top 10, secure coding best practices). • Familiarity with authorization, authentication, or session management techniques (e.g., SAML, OAuth, SSO). • Knowledge of common attack methods (XSS, CSRF, SQL injection) and familiarity with frameworks such as MITRE. • Knowledge of the SSDLC process and its components; Rest API technology and the API Gateway concept. • Being familiar with one of the following programming languages to a good degree: Java, .Net, C#, JavaScript, Go and scripting languages such as Python. • Experience with one of the three leading clouds – AWS, Azure or GCP Good to Have Skills: • Relevant certifications in DevSecOps or Application Security. • Knowledge of cryptographic best practices. • Understanding of the API Gateway concept and Rest API technology. • Experience conducting Proof of Concept (PoC) for new security tools. Key Responsibilities: • Identify security gaps in the CI/CD pipeline and application designs and develop mitigation strategies to secure them. • Define security requirements and controls for both CI/CD processes and API development. • Collaborate with SMEs to assist in testing, optimizing, and calibrating CI/CD and API controls. • Ensure security measures align with industry best practices and standards. • Act as an escalation point for security-related issues, vulnerabilities, and non-compliance incidents. • Conduct PoC for new security tools and provide recommendations to ensure they align with business objectives. Technical Experience: • Hands-on experience with CI/CD tools (Ansible, SonarQube, Azure DevOps, Jenkins, GitHub, Bitbucket). • SAST, DAST, SCA tools implementation and practical experience addressing security vulnerabilities in CI/CD pipelines. • Practical knowledge of web application & API security, secure coding, and familiarity with the OWASP Top 10. • Experience with authentication and authorization mechanisms (SAML, OAuth, SSO) and cryptographic best practices. • Familiarity with popular attack methods (XSS, CSRF, SQL injection, etc.) and the MITRE framework. Professional Experience: • Proven ability to identify and resolve security vulnerabilities across applications and CI/CD pipelines. • Experience in working closely with SMEs to optimize security controls and test solutions. • Strong collaboration skills, with the ability to align security requirements with business objectives. • Experience with cloud platforms (AWS, Azure, GCP) and ensuring security compliance within these environments. Professional & Technical Skills: - Must To Have Skills: Proficiency in Application Security. - Good To Have Skills: Experience with Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST). - Strong understanding of security principles and best practices. - Experience in conducting security assessments and vulnerability testing. - Knowledge of secure coding practices and secure software development lifecycle (SDLC). - Familiarity with security frameworks and standards such as OWASP, NIST, and ISO 27001. - Ability to analyze and interpret security assessment findings and provide actionable recommendations. - Excellent communication and presentation skills to effectively communicate security risks and recommendations to stakeholders. Additional Information: - The candidate should have a minimum of 5 years of experience in Application Security. - This position is based at our Bengaluru office. - A 15 years full time education is required.15 years full time education

About Accenture


Accenture is a leading global professional services company that helps the world’s leading organizations build their digital core, optimize their operations, accelerate revenue growth and enhance services—creating tangible value at speed and scale. We are a talent- and innovation-led company with 774,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.Visit us atwww.accenture.com



Equal Employment Opportunity Statement



All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.


Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.


Accenture is committed to providing veteran employment opportunities to our service men and women.


You have reached your limit of 15 Job Alerts. To create a new Job Alert, delete one of your existing Job Alerts first.
Similar jobs alert created successfully. You can manage alerts in settings.
Similar jobs alert disabled successfully. You can manage alerts in settings.