UST
Linkedin · Posted 13d ago
SOC Lead II
Continue to application
Add your email once, then Caio opens the original posting.
Indexed description
Role DescriptionCore Responsibilities
- SDLC Integration: Manage the integration of security tools and processes (SAST, DAST, SCA) using Checkmarx tool into CI/CD pipelines.
- Vulnerability Remediation: Coordinate with development teams to triage, track, and close security flaws identified during penetration tests or automated scans.
- Stakeholder Management: Serve as the primary point of contact between technical AppSec engineers, product owners, and executive leadership to report on the "security posture" of applications.
- Program Governance: Develop and monitor project plans for AppSec initiatives, such as implementing a new bug bounty program or maturing a threat modeling process.
- Risk Mitigation: Proactively identify and escalate blockers that impact the delivery of secure software or compliance with standards like ISO/IEC 27001 or PCI DSS.
- Tooling: Experience with vulnerability management platforms (e.g., Checkmarx, WIZ, Qualys) and project tracking tools like Jira.
- Project Management: Proficiency in Agile/Scrum methodologies and tools like Jira.
- Technical Literacy: Familiarity with the OWASP Top 10, secure coding standards, and cloud security (AWS/Azure/GCP).
- Communication: Ability to translate complex technical vulnerabilities into business risks for non-technical stakeholders.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search
Want help applying to roles like this?
Search Caio for free. If CV tailoring and application tracking get heavy, Full Caio Agent adds a human specialist.
View Full Agent