132 Coverity Jobs

Position Purpose Provide a brief description of the overall purpose of the position, why this position exists and how it will contribute to achieving the teams goal. Responsibilities Direct Responsibilities Strong expertise in application security concepts and activities like Source Code Review (SAST) & Dynamic application vulnerability scanning (DAST). Good understanding of Information Security concepts and strategies. Knowledge of Secure Development methodologies and frameworks. Hands-on experience in penetration testing and tools like Apisan, WebInspect, Fortify, AppSpider, BurpSuite, Qualys, Checkmarx, Coverity Well-versed in conducting Security Review, Assessments and providing recommendations. Knowledge of OWASP, SANS standards. Executing IT risk assessment reviews, identifying controls gaps and working in collaboration with subject matter experts to devise appropriate mitigation plans. Experience in Process Improvement, Controls Enhancement and Reporting. Identifying key risk trends, issues and other insights requiring further investigation and following up with Technology as appropriate. Providing independent expert advice to the IT areas on application & data risk issues. Engaging with organization wide risk and control groups, including internal audit and territory control teams. Working with Technology stakeholders (including Production Support and Development teams) to identify the IT risks affecting the organization and formulate appropriate remediation strategies based on a full understanding of business exposure and compensating controls. Contributing Responsibilities Monitoring and oversight of existing IT risks, working collaboratively with stakeholders in ensuring plans are managed within timescales and escalating where appropriate. Managing relationships with Business and IT teams, chairing periodic meetings and being a point of contact for escalating to wider team members. Assistance with drafting of risk acceptance statements and coordinating sign-off from business and IT stakeholders. SPOC for security architecture meetings. Technical & Behavioral Competencies Excellent Interpersonal and presentation skills Strong in verbal and written communication Ability to liaise with cross-functional stakeholders globally Clear understanding of application and data security Must be flexible, independent, self-motivated Good analytical skills. Specific Qualifications (if required) CEH, SSCP, OSCP certified. Technical Graduate (Computer Science) Preferable.

We also recognize the importance of closing the 4-million-person cybersecurity talent gap. We aim to create a home for anyone seeking a meaningful future in cybersecurity and look for candidates across industries to join us in soulful work. More at . Role Overview: 6+ years of Experience with strong C++ programming. Experience in Windows internals and Security domain is required. Experience in Security domain, Crash dump and ETL Trace analysis is preferred. About Role: Design, build and maintain efficient, reusable, and reliable C++ code breakthrough multiplatform software for securing endpoints on a variety of desktop and cloud platforms. Deliver solutions that meet the timeline, quality and costs for the projects and deliverable elements. Solutions must meet the preset goals for quality, security, and performance. Knowledge of Windows User Mode programming and internals Good understanding of software architecture and design patterns. Strong Object-Oriented Programming principles. Working knowledge of tools like WinDbg, Coverity, Application Verifier, etc. Meticulous at both analysis and execution Ability to collaborate and work with multiple teams across different time-zones About You: 6+ years of relevant experience in C++ coding and debugging skills in Windows Platform. Strong in data structures and algorithms. Strong communication skills Good organizational and time-management skills.

As a Mobile App Developer at Apptunix, you will be responsible for designing, developing, and maintaining Android applications using Kotlin and Java. Your role will involve implementing Android UI design principles, patterns, and best practices to create user-friendly interfaces. You will work with REST APIs, SOCKETS, FIREBASE, and other third-party integrations to enhance the functionality of the applications. In addition, you will utilize Kotlin-Coroutines, Data Store, and Encryptions to ensure the security and performance of the applications. Writing Unit Test cases and achieving high Code Coverage will be essential aspects of your job. You will be expected to apply Design Patterns such as MVVM, MVP, MVC, or clean architecture to structure the code efficiently. Furthermore, your experience with mobile analytics tools will be valuable in analyzing user behavior and optimizing the applications accordingly. Proficiency in Android Studio, GIT, SVN, Gradle, and Jira will be necessary for effective collaboration and version control. Familiarity with static analysis tools like Coverity will be advantageous. Your interpersonal skills will play a crucial role as you collaborate with a team of 200+ in-house experts at Apptunix to deliver customized solutions that meet clients" requirements. Your understanding of the Agile Development process will guide you in adapting to evolving project needs and ensuring timely delivery of high-quality applications.,

About Marvell Marvell’s semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities. At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead. Your Team, Your Impact The Marvell LiquidSecurity Network HSM product family was designed from grounds up for Cloud model. LiquidSecurity Network HSMs are deployed in multiple public and private clouds and have enabled various use cases including KMS, SSL/TLS handshakes, application level encryption, authentication. This robust solution includes remote management capabilities designed for lights out data center, real time scaling, run time isolated partitions and true High availability and load balancing capabilities. With up to 35,000 2048-bit symmetric ops/sec, up to hundreds of thousands symmetric ops/sec and up to 32 real time isolated partitions, LiquidSecurity Network Hardware Security Modules (HSM) brings huge CAPEX and OPEX benefits. What You Can Expect The job involves designing and development of software for Marvell’s LiquidSecurity HSM. As a developer, your responsibilities include understanding of customer requirements, analysis, design & development of features with high quality. Mandatory Skills What We're Looking For Must have at least 8-12 years of experience Excellent coding skills in C & Linux Must have knowledge and working experience in Multithreading, Multiprocessor Working knowledge of Static Analysis tools (Coverity, SonarQube), valgrind, gcov. Excellent analytical, problem solving & debugging skills Familiar with Agile process Must have effective interpersonal and teamwork skills Excellent communication skills Must have the ability to multi-task in a fast-paced environment Desired Skills Experience with HSMs and other security domain (TLS, Cryptography) is a plus Working knowledge on cryptographic algorithms (RSA, EC, AES, SHA variants), TLS/SSL protocols Working experience in any of one of the standard API developments : PKCS11, OpenSSL Engine, Microsoft CNG/KSP Additional Compensation And Benefit Elements With competitive compensation and great benefits, you will enjoy our workstyle within an environment of shared collaboration, transparency, and inclusivity. We’re dedicated to giving our people the tools and resources they need to succeed in doing work that matters, and to grow and develop with us. For additional information on what it’s like to work at Marvell, visit our Careers page. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

About Marvell Marvell’s semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities. At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead. Your Team, Your Impact The Marvell LiquidSecurity Network HSM product family was designed from grounds up for Cloud model. LiquidSecurity Network HSMs are deployed in multiple public and private clouds and have enabled various use cases including KMS, SSL/TLS handshakes, application level encryption, authentication. This robust solution includes remote management capabilities designed for lights out data center, real time scaling, run time isolated partitions and true High availability and load balancing capabilities. With up to 35,000 2048-bit symmetric ops/sec, up to hundreds of thousands symmetric ops/sec and up to 32 real time isolated partitions, LiquidSecurity Network Hardware Security Modules (HSM) brings huge CAPEX and OPEX benefits. What You Can Expect The job involves designing and development of software for Marvell’s LiquidSecurity HSM. As a developer, your responsibilities include understanding of customer requirements, analysis, design & development of features with high quality. Mandatory Skills What We're Looking For Must have at least 8-12 years of experience Excellent coding skills in C & Linux Must have knowledge and working experience in Multithreading, Multiprocessor Working knowledge of Static Analysis tools (Coverity, SonarQube), valgrind, gcov. Excellent analytical, problem solving & debugging skills Familiar with Agile process Must have effective interpersonal and teamwork skills Excellent communication skills Must have the ability to multi-task in a fast-paced environment Desired Skills Experience with HSMs and other security domain (TLS, Cryptography) is a plus Working knowledge on cryptographic algorithms (RSA, EC, AES, SHA variants), TLS/SSL protocols Working experience in any of one of the standard API developments : PKCS11, OpenSSL Engine, Microsoft CNG/KSP Additional Compensation And Benefit Elements With competitive compensation and great benefits, you will enjoy our workstyle within an environment of shared collaboration, transparency, and inclusivity. We’re dedicated to giving our people the tools and resources they need to succeed in doing work that matters, and to grow and develop with us. For additional information on what it’s like to work at Marvell, visit our Careers page. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

As a Staff Application Security Engineer at Zscaler, you will be an integral part of the Product Security team. You will report to the Director of Vulnerability Management and play a vital role in conducting comprehensive static and dynamic analysis of applications to detect and address security vulnerabilities at an early stage of the development process. Your responsibilities will include implementing Software Composition Analysis (SCA) tools to manage open-source components, ensuring their security and up-to-date status. Additionally, you will be responsible for assessing and securing containerized environments and Infrastructure as Code (IAC) deployments, emphasizing the adherence to security best practices to safeguard the infrastructure against potential threats. To be successful in this role, you should possess expertise in DevSecOps, with a minimum of 4 years of hands-on experience in deploying and managing security protocols such as Static Application Security Testing (SAST), Software Composition Analysis (SCA), or Infrastructure as Code (IaC). Proficiency in application security tools like Snyk, Semgrep, Coverity, and knowledge of dependency management tools is essential. You should have a strong understanding of secure coding practices, vulnerability management, remediation techniques, and expertise in source control and CI pipelines. Preferred qualifications include experience as a software developer or in a DevSecOps position, proficiency in programming languages like Java, Python, JavaScript, C/C++, and Golang. Extensive experience in Cloud Security is desirable, with the ability to secure cloud environments in AWS, Azure, and Google Cloud, along with knowledge of cloud-native security tools and methodologies. Joining Zscaler means becoming part of a diverse and inclusive team that values collaboration and belonging. Our comprehensive Benefits program supports employees and their families at various life stages, offering health plans, vacation and sick time off, parental leave options, retirement plans, education reimbursement, in-office perks, and more. By applying for this role, you agree to comply with applicable laws, regulations, and Zscaler policies related to security, privacy standards, and guidelines. Zscaler is committed to providing reasonable support and accommodations in recruiting processes for candidates with different abilities, long-term conditions, mental health conditions, religious beliefs, neurodiversity, or pregnancy-related support.,

We are in to Manufacturing, distribution Electronic Security System Like (CCTV Camera, , PA system, Cables ) We are seeking a detail-oriented Software Engineer to conduct of CCTV system software, firmware, and embedded modules. The role requires identifying vulnerabilities, backdoors, and coding issues in surveillance applications, camera firmware, and related embedded systems. The engineer will collaborate with development and security teams to ensure the integrity, security, and performance of CCTV software components. Key Responsibilities: Source Code Analysis: - Review source code for CCTV software including camera firmware, video management systems (VMS), and SDKs. - Identify security flaws, deprecated functions, and logical vulnerabilities. - Ensure adherence to secure coding standards (e.g., OWASP, MISRA C). Security & Compliance: - Evaluate embedded code for hardcoded credentials, insecure protocols, or buffer overflows. - Assist in achieving compliance with standards such as ISO/IEC 27001, GDPR, etc. - Support secure firmware development lifecycle. Documentation & Reporting: - Prepare reports on code quality, vulnerabilities, and security risks. - Document recommended fixes, patches, and architectural improvements. - Track and validate resolution of identified issues. Collaboration & Support: - Work with R&D, DevOps, and QA teams for code remediation. - Participate in security audits and penetration testing planning. - Provide technical guidance on secure coding practices. Qualifications: Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related discipline. 3–6 years of experience in software development and source code review, preferably in embedded or surveillance systems. Required Skills: - Strong proficiency in C/C++, Python, or embedded Linux development. - Experience with CCTV/VMS software, RTSP protocols, and camera SDKs. - Familiarity with static and dynamic code analysis tools (e.g., SonarQube, Coverity, Fortify). - Understanding of secure coding guidelines and software lifecycle models. Preferred Skills: -Knowledge of firmware reverse engineering and binary analysis. - Exposure to real-time operating systems (RTOS), IoT, or surveillance camera platforms. - Experience in vulnerability assessment and CVE analysis. Certifications (Optional): - CEH (Certified Ethical Hacker) - CSSLP (Certified Secure Software Lifecycle Professional) - OSCP or equivalent penetration testing certification Website: www.aditgroup.com Corporate Video Link : https://www.youtube.com/watch?v=dn0UbRYpuBI&t=47s Contact Person : Ashish Lodha Email id: hr@aditgroup.com Contact No: 9099962720 Address: D-405, Abhishek Complex & Estate -1, New Civil Hospital Road, Ahmedabad Job Type: Full-time Pay: ₹40,000.00 - ₹80,000.00 per month Benefits: Cell phone reimbursement Health insurance Internet reimbursement Provident Fund Schedule: Day shift Supplemental Pay: Commission pay Application Question(s): What is Your Current and Expected CTC ? What is your notice period ? What is your based location ? Experience: Software Development for Surveillance Product: 4 years (Required) Work Location: In person

Job Summary Excellent understanding of Linux and cyber security attacks like SQL Injection risks. Hands on experience on secure APIs, Container and Kubernetes security, etc. Knowledge on SAST (Static Analysis), DAST (Dynamic Analysis) and SCA (Software composition Analysis) tools, Threat Modelling & Risk Assessment, PEN testing Implement and manage tools for scanning and monitoring - AquaSec, X-Ray, SonarQube, Coverity, etc. Hands on Github experience, ability to own manual and automated security testing, investigation and troubleshoot of any issues. Proactively work towards fix and mitigation of common vulnerabilities. Investigate and propose practical solutions Ability to clearly communicate security issues to tech and non tech stakeholders Perform code reviews from security perspective. Security Testing & Validation Evaluate security of open-source and third-party dependencies and recommend safer versions. Knowledge on web certifications and related risks. Work with DevOps to implement runtime security measures (e.g., WAF, logging, monitoring). Strong understanding of products security concepts. Ensures product security aligns with industry standards (OWASP, ISO, GDPR, Etc.) Help define security acceptance criteria for user stories. Collaborate with architects to mitigate design-level vulnerabilities Educate team on secure coding practices

GE Healthcare Healthcare Imaging Category Engineering / Technology Mid-Career Job Id R4027110 Relocation Assistance Yes Location Bengaluru, Karnataka, India, 560066 Job Description Summary This role would be responsible for designing, developing and testing Embedded Software (Firmware), platforms and systems that control and runs on devices that need to be tailored to the needs of the hardware that it has to control and run on (i.e. directly controls the real time functions of a physical device such as motors, alternators, engines, valves, fans, and other devices and products). Typically requires a deep understanding of the characteristics of the physical device being controlled, the real-time functions it is expected to perform and the ability to design, develop, implement, and test the logic and software required to realize the real-time functionality. Usually tailored for products and services across various P&Ls. Impacts quality of own work and the work of others on the team. This role is having responsibility of module ownership, cross functional collaboration and SW integration. Working experience with AGILE and SCRUM approach is added advantage. Executes standard operational/technical tasks typically subject to instructions and work routines. There is latitude to rearrange the sequence to complete task/duties based on changing work situations. GE HealthCare is a leading global medical technology and digital solutions innovator. Our purpose is to create a world where healthcare has no limits. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world. tex Job Description Roles and Responsibilities Work closely with systems teams in requirements gathering and software design Identify the scope of the work, provide initial estimate, and resources required for work completion Demonstrate the understanding of Agile software development lifecycle and able to distinguish the core inputs and outputs in each cycle. Maintain code quality through best practices, unit testing and code quality automation Seek and provide feedback on design and development Demonstrate the ability to make informed technology choices after due diligence and impact assessment Understand the product platforms, its components, and the interactions between components. As a part of the role, the engineer is expected to develop expertise in one or more components of the product with time. Be an expert in writing code that meets standards and delivers the desired functionality using the technology selected for the project Drive design reviews, define interfaces between code modules, and applies existing technology to designs Be an expert in assessing application performance and optimizing/improving it through design and best coding practice Be responsible for providing technical leadership and defining, developing, and evolving software in a fast paced and agile development environment using the latest software development technologies and infrastructure Write code that meets standards and delivers desired functionality using the technology selected for the project Interacting with global teams to develop consistent and synergized software for platforms. Actively provide inputs to improve established and new platforms. Designing and building strong testing infrastructure to minimize dependency on hardware availability The job role provides the engineer autonomy to make decisions within a defined framework. As a senior member of the engineering team, the candidate is expected to help resolve issues not defined in the framework by helping defining strategies with the team. Required Qualifications Bachelor's degree from an accredited university or college in Electronics/Computer science Engineering or equivalent. 6+ years’ experience in embedded software development for complex system and architecture. Strong expertise in programming languages like C, C++ . Demonstrated expertise in delivering software solutions for embedded systems. Knowledge of software development lifecycle, and expertise with tools to help in software development. Expertise in independently developing and debugging embedded software designs in baremetal and with RTOSs . VxWorks preferred. Expertise in setting up software development infrastructure, including source control (Git based tools) and quality control tools (Coverity, and/or other code analysis tools) Experience in working with ARM based microcontrollers and microprocessors Desired Characteristics Master’s degree in Electrical/Electronics/ Computer science Engineering or equivalent. Strong oral and written communication skills. Ability to document, plan, and lead the execution of programs. Prior experience in guiding a small and medium sized teams in the delivery of complex embedded software designs. Experience in driving agile and lean methodologies in software development. Experience in promoting practices for developing software that is reliable and consistently meets design requirements. Inclusion and Diversity GE Healthcare is an Equal Opportunity Employer where inclusion matters. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. We expect all employees to live and breathe our behaviors: to act with humility and build trust; lead with transparency; deliver with focus, and drive ownership – always with unyielding integrity. Our total rewards are designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration and support. Disclaimer: GE HealthCare will never ask for payment to process documents, refer you to a third party to process applications or visas, or ask you to pay costs. Never send money to anyone suggesting they can provide employment with GE HealthCare. #L1-SB1 #LI-Onsite

GE Healthcare Healthcare Patient Care Solutions Category Digital Technology / IT Mid-Career Job Id R4027173 Relocation Assistance Yes Location Bengaluru, Karnataka, India, 560066 Job Description Summary As a Staff Software Engineer(Team Lead), being part of the Patient care solutions team, you will be responsible for leading one or more scrum teams to deliver high quality outcomes by providing technical guidance, leading the scrum execution and delivery end to end. You shall be able to help software development teams apply scrum framework, plan deliverables and monitor sprint execution performance, resolve issues, provide technical guidance as required. You shall be able to run the sprint execution of the respective scum team(s) by regularly revisiting and optimizing your execution strategy to ensure predictable delivery. You will partner with the Scrum teams, Technical Leads, Product owner(s), Program Management Office, Architects Office, and functional owners and contribute hands-on as situation demands to help the scrum teams. You shall ensure best practices of scrum execution are followed by the team and improved as needed. You shall be accountable for the high-quality delivery of the scrum teams for a set of modules in our distributed IoMT Internet of Medical Things platform, on time, within scope and budget, ensuring quality of the deliverable is met. GE HealthCare is a leading global medical technology and digital solutions innovator. Our purpose is to create a world where healthcare has no limits. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world. Job Description Roles and Responsibilities In this role, you will play the below responsibilities: For the respective scrum team(s) define execution plan and approach based on project scope, PI plan, expected timeline and available budget/resources, by working closely with the Project /Program manager, Product Owner and Tech leads. Technically be aware and knowledgeable to guide teams through technical challenges as required and translate team’s ask/help required to the required subject matter experts external to the team. Manage project risks, scope changes. Work closely with product owner and Architect’s Office to discuss PI backlog and understand in detail to be aware of the team’s backlog. Work closely with product owners to manage PI and Iteration backlogs and new/changing priorities. Coordinate and facilitate PI planning, Iteration Planning, retrospective meetings, daily stand-ups, PI and Sprint grooming and other scrum/SAFe related ceremonies. Coach team members in Agile best practices to encourage team bonding, guide development teams to higher scrum maturity and predictability with respect to scope. Facilitate and be the point of contact for internal/external communication and effective collaboration with proactive dependency management. Resolve conflicts and remove obstacles that occur. Drive simplification and improvement as necessary. Help teams implement changes effectively. Ensure deliverables are up to quality standards at the end of each sprint by ensuring that a story meets its scope, Definition of Done and acceptance criteria. Support technical leads/architects of the scrum teams in technical discussions and be aware of the latest updates. Help maintain a productive environment where team members work collaboratively and own the product. Minimum Educational Qualifications and Relevant experience Bachelor's Degree in STEM Majors (Science, Technology, Engineering and Math) with a minimum of 11+ years' experience out of which minimum 8+ years should be hands-on software development. A minimum of 3+ years of experience as Scrum Lead or Team lead or Scrum master or Technical Project manager, leading and executing multiple scrum teams deliverables. Good knowledge of Agile Methodologies (Scrum, SAFe) and techniques and ceremonies, artifacts. Technical Qualifications: Hands-on experience on core Java (1.8 or higher), conversant in doing code reviews. Experience of developing multithreaded applications. Exposure in designing scalable enterprise solutions on microservices paradigm and REST APIs Exposure to developing containerized applications/services in Docker/Kubernetes environment. Good understanding and experience with DevOps practices and Continuous Integration /Continuous Delivery tool chains (Github, Jenkins, Sonar, Coverity, Code review tools). Project Execution Qualifications Excellent communication and servant leadership skills Analytical, Problem-solving and conflict-resolution ability Good understanding of Agile delivery methodology and experience in working with Scrum teams in a global setup. Prior experience in Healthcare/Patient monitoring will be an added advantage. Scrum master certification is desired. Inclusion and Diversity GE Healthcare is an Equal Opportunity Employer where inclusion matters. Employment decisions are made without regard to race, colour, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. We expect all employees to live and breathe our behaviours: to act with humility and build trust; lead with transparency; deliver with focus, and drive ownership – always with unyielding integrity. Our total rewards are designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you would expect from an organization with global strength and scale, and you will be surrounded by career opportunities in a culture that fosters care, collaboration and support. #LI-Hybrid #LI-MA6 Additional Information Relocation Assistance Provided: Yes

Join our diverse team as a Software Tools Administrator, where effective communication and collaboration are paramount. In this role, you'll handle software tools, lead all aspects of CI/CD DevOps pipelines, and administer global tool licensing. Your expertise with tools like Coverity, Blackduck, PCLint, IAR Workbench, and Collaborator will be key. Familiarity with DevOps principles and CI/CD pipelines is helpful. In this role, your responsibilities will include managing software tools as an administrator, working on the CI/CD DevOps Pipeline, handling various software tools such as Coverity, Blackduck, PCLint, IAR Workbench, and Collaborator. Knowledge of DevOps principles and CI/CD pipelines will be an added advantage. You thrive in fast-paced, unexpected environments, taking crucial action and establishing relationships proactively. Your ability to deliver clear, compelling messages and persistently pursue solutions sets you apart. For this role, you will need a Bachelor's degree in computer science, Information Technology, or related field, along with 2 to 5 years of experience in software tools administration or DevOps. Proficiency in coordinating various software tools and understanding their licensing, knowledge of DevOps principles, practices, and methodologies, familiarity with programming languages (e.g., C#), scripting (e.g., Python), and automation, strong multitasking abilities, and adaptability in changing priorities. Preferred qualifications that set you apart include exceptional problem-solving skills, attention to detail, outstanding communication, and collaboration abilities for effective teamwork. At Emerson, we prioritize a workplace where every employee is valued, respected, and empowered to grow. We foster an environment that encourages innovation, collaboration, and diverse perspectives. Our commitment to ongoing career development and growing an inclusive culture ensures you have the support to thrive. We believe diverse teams, working together are key to driving growth and delivering business results. If you have a disability and are having difficulty accessing or using this website to apply for a position, please contact: idisability.administrator@emerson.com. Emerson is a global leader in automation technology and software, helping customers in critical industries operate more sustainably while improving productivity, energy security, and reliability. We offer equitable opportunities, celebrate diversity, and embrace challenges with confidence that, together, we can make an impact across a broad spectrum of countries and industries. Join our team let's go!,

Job Description In This Role, Your Responsibilities Will Be: Design, develop, and maintain web applications using C#, .NET Core technologies for backend services Develop and consume RESTful APIs. Develop scalable backend services and APIs using Azure and other cloud services, and design robust database solutions and data management tools Develop responsive interfaces using frameworks such as Angular, collaborate with UX/UI designers to translate designs into functional components. Develop the technical design according to Technical Architect's specs, provide suggestions and help develop technical architecture. Write clean, scalable, and efficient code while following best practices in software development. Develop unit test scripts and perform unit testing Conduct thorough code reviews, provide constructive feedback to team members, and ensure alignment to development. Integrate testing methodologies such as TDD and BDD to improve code quality and reliability. Troubleshoot and debug apps to ensure efficient performance and user experience. Participate in Agile development processes, including sprint planning, daily stand-ups, and retrospectives Work in Agile Scrum teams to develop cloud native applications. Collaborate with cross-functional teams for developing new features. Work with Product Owner to estimate efforts and prioritize requirements backlog. Who You Are: You are a quick learner, willingness to improve and have a problem solving and collaborative approach. Having User centric approach, good analytical skills to understand topics in broader perspective. You always keep the end in sight; puts in extra effort to meet deadlines. You are inter-personal savvy and have excellent verbal and written Communications Skills. For This Role, You Will Need: MSc / B.E. / B Tech (Computer / Electronics) 5 to 7 years of experience working on enterprise software projects, with a solid focus on both front-end and back-end technologies. Hands-on experience on Angular 18 and above Familiarity with Containerized app development using Azure Kubernetes services and docker. C#, .NET Core web API development REST/gRPC Entity Framework Code first .NET Core API Security (authentication authorization etc) API automated testing using mocks, ensuring code coverage Familiarity with front-end testing frameworks like Jest or Mocha. Good working experience on PostgreSQL Good knowledge of Azure Concepts (E.g. App services, Azure SQL DBs, Logic Apps) DevOps CI/CD Preferred Qualifications That Set You Apart: Hands on experience designing and developing n-tier SOA\microservices using dotnet core Patterns: Transaction handling Saga, CQRS, Service communication even driven, broker, service bus Troubleshooting, Profiling (performance, utilization) OOD, Patterns: Dependency injection, adapter, factory patterns Parallel, Async Programming (async, await etc) Coverity, BlackDuck, Aqua, Sonar Cloud Exposure to Software Coding best practices Awareness of SAFe 6.0 and Agile Scrum Methodologies Our Culture & Commitment to You: At Emerson, we prioritize a workplace where every employee is valued, respected, and empowered to grow. We foster an environment that encourages innovation, collaboration, and diverse perspectives—because we know that great ideas come from great teams. Our commitment to ongoing career development and growing an inclusive culture ensures you have the support to thrive. Whether through mentorship, training, or leadership opportunities, we invest in your success so you can make a lasting impact. We believe diverse teams, working together are key to driving growth and delivering business results. We recognize the importance of employee wellbeing. We prioritize providing competitive benefits plans, a variety of medical insurance plans, Employee Assistance Program, employee resource groups, recognition, and much more. Our culture offers flexible time off plans, including paid parental leave (maternal and paternal), vacation and holiday leave. Same Posting Description for Internal and External Candidates

We are seeking a skilled and dynamic Security & Privacy Architect and SDL Coach to join our team and help strengthen the security posture of our software development lifecycle. This role combines a strong foundation in code analysis, security architecture, and coaching teams on security best practices. The ideal candidate will work closely with development teams, conducting security assessments, guiding secure coding practices, and ensuring compliance with industry standards. As a Security & Privacy Architect, you will be responsible for identifying vulnerabilities and providing actionable recommendations to reduce security risks. As an SDL Coach, you will help application teams adopt security-focused practices into their software development lifecycle (SDLC) while ensuring compliance with regulatory standards like PCI-DSS. Key Responsibilities Code Analysis, Scanning, and Remediation • Security Tool Configuration: Configure and operate security scanning tools (e.g., Snyk, Grit, Checkmarx, Coverity, Mend etc.) to scan applications and interpret results to identify potential security flaws. • Static and Dynamic Code Analysis: Perform static and dynamic code analysis to identify vulnerabilities in the source code. Help App teams in adopting best practices. • Vulnerability Remediation: Work directly with development teams to guide them in resolving identified vulnerabilities and promote secure coding practices. • Issue Prioritization: Prioritize critical security issues and escalate them for immediate remediation when necessary. Security & Privacy Architecture • Security Assessments: Conduct in-depth security assessments to identify potential attack vectors, vulnerabilities, and risks in the application architecture and source code. • Recommendations: Provide actionable recommendations to development and architecture teams to address security gaps and ensure compliance with security standards. • Security Design: Assist in the design of secure application architectures that meet both business and security requirements. SDL Coaching and Best Practices • SDL Awareness: Conduct Security Development Lifecycle (SDL) Coaching and Assessments with development teams to raise awareness of security practices and ensure they align with best security practices. • Security Best Practices Adoption: Guide teams in adopting and integrating Comcast Security practices into their SDLC, focusing on secure coding, testing, and deployment. • Coaching & Mentoring: Provide ongoing coaching and mentoring to developers to help them understand the importance of security throughout the development process. Compliance Lead (CGA, PCI, CPP) • Regulatory Compliance: Participate in security risk assessments and ensure that applications comply with relevant industry standards and regulations (e.g., PCI-DSS, CGA, CPP). • Audit Preparation: Assist application teams with preparation for security audits, providing guidance before and after audits to address any issues. • Documentation: Ensure that all security compliance requirements are well documented and tracked. Research and Continuous Improvement • Threat Intelligence: Stay updated on the latest security threats, vulnerabilities, and emerging trends in application security to proactively mitigate risks. • Tool & Framework Evaluation: Evaluate new security tools, frameworks, and technologies that can improve the effectiveness of security code scanning and remediation. Conduct comparative analysis and provide recommendations. • Process Improvement: Continually assess and improve security processes within the development lifecycle to enhance overall security posture. Required Qualifications • Experience: 8+ years of experience in application security, including hands-on experience with code analysis, security testing, and risk assessments. • Technical Skills: o Strong understanding of secure software development practices. o Familiarity with security tools such as Snyk, Grit, Checkmarx, Mend and other static/dynamic code analysis tools. o Knowledge of security vulnerabilities (e.g., OWASP Top 10, CVEs) and remediation techniques. o Experience with common security frameworks and methodologies (e.g., OWASP, NIST, CIS, PCI-DSS). o Proficient in at least one programming/scripting language (e.g., Python, Java, C#, JavaScript). • Compliance Knowledge: In-depth understanding of industry compliance standards such as PCI-DSS, CGA, and CPP. • Communication Skills: Excellent written and verbal communication skills with the ability to interact with technical and non-technical teams alike. Preferred Qualifications • Certifications: CISSP, CISM, CISA, or equivalent security certification is highly preferred. • Experience with Cloud Security: Knowledge of security best practices in cloud environments (AWS, Azure, GCP). • Experience with DevSecOps: Experience with integrating security practices into DevOps pipelines and workflows.

About The Role Build, enhance and maintain high-quality CI/CD pipelines and DevOps infrastructure using Shell/Perl scripting and configuration tools, following Agile, DevOps, and modern automation practices. Hands-on experience with version control, container platforms, and cloud infrastructure. TechnologiesJenkins, SonarQube, Coverity, GitHub, Docker, Podman, Ansible, AWS, Kubernetes, Terraform, Artifactory Required Qualifications 3-4 years of relevant work experience in DevOps, Build & Release, and CI/CD automation Experience working with SonarQube (run and configure Sonar scans for quality checks) Experience using Coverity for static code analysis and security scanning Strong hands-on experience in JenkinsJob creation, pipeline configuration, Jenkins plugin management Proficient in Shell and Perl scripting for automation and build tasks In-depth GitHub Administration knowledgeRepo setup, access control, and plugin usage Experience in branching strategies including Branch Creation, Pull/Merge Requests, Collapse strategies Hands-on experience with containerization using Docker and Podman Strong debugging and troubleshooting skills for build, deployment, and system-level issues Experience in troubleshooting build failures, identifying root causes across CI/CD pipelines, dependency management, and environment configurations Experience creating and deploying RPM packages and patches Proficient in Linux commands, system operations, and scripting Experience with YAML and Groovy scripting for Jenkins pipeline automation Working knowledge of Artifactory for artifact management and binary repositories Hands-on experience with Ansible for configuration management and server provisioning Familiar with AWS services and cloud deployment patterns Working experience with Kubernetes for container orchestration Knowledge of Terraform for infrastructure as code (IaC) and cloud provisioning Desired Skills Advanced scripting for automation tasks Integration of static analysis tools in CI pipelines Security best practices in DevOps workflows Primary Skills Build Tools, version control system, CI/CD Tools, CM Components, Jenkins, CICD, Docker, Linux

Description: As a Sr.DevOps engineer, you will be engaged in the optimization of engineering processes and tooling affecting the Analytics engineering department product. You will be involved in the development and support of solutions which enhance the efficiency of engineering as well as configuration of tools. These solutions involve diverse development platforms, software, hardware, technologies and tools. You will participate in the design, development and implementation of complex infrastructure. You will be involved in supporting our strategic move of products into the public/private/hybrid cloud, performing DevOps activities, CI/CD and working with various technologies such as Docker, Kubernetes, Containerization, Maven, Artifactory, Jenkins, Ansible, Virtualization and more as required to automate the process of building, packaging, provisioning and deployment of on-premises and SaaS applications. Responsibilities: Design, plan, build and execute software infrastructure for complete CI/CD for the build, deploy and testing of the large-scale software products. Manage and monitor the engineering labs, including provisioning of new hardware and virtual machines, debugging problems impacting engineering and provisioning access and accounts. Develop custom tools, automation and integration with existing tools to increase efficiency. Development of DevOps and Cloud solutions. Requirements: At least 5 years of experience developing and maintaining Continuous Integration/Continuous Delivery solutions using Jenkins/Harness. At least 2 year of experience with Continuous Integration (CI) / Continuous Deployment (CD) and configuration management tools such as Docker, Maven, Artifactory, Jenkins, Ansible, Kubernetes. Proficient in CI/CD, DevOps, Virtualization, Linux, OS hardening, Security, VMWare and related troubleshooting. Well versed with scripting experience and automation. At least 2 year of scripting and/or programming experience in one of the following. Ansible, Shell/Bash, Yaml , Groovy, Python, PowerShell - Mandatory. C# and/or Java - Strong advantage. Experience in Helm, Git, GitHub, Harness, Coverity, Sonar, Datadog, Kafka, Jira & Confluence. Working experience on DevOps using Harness platform will be the preference. Experience in Terraform and ARM is an advantage. Experience working in a large global organization. Experience working with public cloud platforms such as AWS, Azure or GCP. Strong interpersonal and communication skills, teamwork and self-learning ability. Ability to work independently and effectively collaborate with distributed teams. Thorough knowledge of software development best practices, Agile practices, coding standards, code reviews, source control management and build process. Bachelor’s/ Master’s degree in Computer Science / Software Engineering or related engineering field. Relevant experience in coding 3-4+ years.

Requirements: Experience: 7+ Years Security Tools: Black Duck, Prisma Cloud, Qualys, Snyk, Coverity, SonarQube, Burpsuite (Anyone) DevOps Stack: Jenkins, Kubernetes, Helm, Docker Programming: Python, Shell, YAML, JSON (Good to have) Cloud Platforms: AWS, GCP (Understanding basics of Cloud) Vulnerability Management: Own end-to-end vulnerability lifecycle for a given Business Unit consisting of multiple enterprise level products. (SaaS & on-prem). Triage, track, Correlate and remediate vulnerabilities from tools like Black Duck, Prisma Cloud, Qualys, Jfrog Xray etc. Security Automation: Integrate security scanning tools into common tools. Develop dashboards and reports for compliance and leadership visibility. Write high level design to automate a few of the manual work. Collaboration & Governance: Work cross-functionally with product teams, and stakeholders. Contribute to security policies, standards, and best practices. Qualification: Bachelor’s degree in computer science, Engineering, or a related field Job Category: IT Support Job Location: Hyderabad Job Country: India

KONE Cybersecurity is an organization of experts responsible for developing and managing cybersecurity in KONE operations globally. We are looking for Senior Software Engineer at Pune. Are you an experienced application security professional and enthusiastic to improve application security? Our team is waiting for you to come and improve our Application security solutions that serve our over thousand applications globally in over 60 countries! If multicultural environments, challenges in high availability services, DevOps and Security is within your path of interests and development, please keep reading! Our mission in IT related to application security is to ensure that KONE customer facing as well as internal applications are built securely and that they are constantly being monitored for security compliance. On top of the process and technical controls, we also help our developers and partners to improve their security practices and guide them in becoming better in security. The platforms and services that are in scope of our application security are: Main Responsibilities Collaboration with Application Owners as well as with Security and Compliances teams to capture their Application security needs. Designing and implementing the application security services, ensuring its fit to business requirements, and conformity with KONE IT guidelines and architecture principles. Contributing to the On-Going and Up-Coming projects within the responsibility area Explore and coordinate improvements to the DevOps and Agile working model with Azure DevOps, Jenkins and GitHub both with cloud and on-premises applications regarding their automated application security testing as part of CI/CD pipelines or as part manual development processes. Co-operating with different teams to enable cross-innovations in different areas of application security. Compiling, reviewing and maintaining the required documentation for the application security services. We Expect You To Have Very good understanding and experience in application security as well as the related services in an international context. Working knowledge of code analysis tools, e.g. Coverity, Black Duck Hub, etc. Working knowledge of application security evaluation with fuzzing tools Experience with typical DAST vulnerability assessment scanning tools At KONE, we are focused on creating an innovative and collaborative working culture where we value the contribution of each individual. Employee engagement is a key focus area for us and we encourage participation and the sharing of information and ideas. Sustainability is an integral part of our culture and the daily practice. We follow ethical business practices and we seek to develop a culture of working together where co-workers trust and respect each other and good performance is recognized. In being a great place to work, we are proud to offer a range of experiences and opportunities that will help you to achieve your career and personal goals and enable you to live a healthy and balanced life. Read more on www.kone.com/careers

What You’ll Do: Firmware Engineer is responsible to understand product requirements, design and develop code, module level and system level embedded software design/coding, validation using programming language C. Provide technical solutions, follow defined processes & lead in product development & technology innovations. Enrich & foster climate of innovation to drive growth & accelerate capability development. Additionally, assisting the technical lead for conceptualization, engineering and software specification of new product platform solutions that meet the stated market requirements for performance, cost, and functionality for Embedded Systems Products. Roles: The Engineer will be involved in design & development of embedded projects encompassing functionality from industrial protocols stacks, cybersecurity feature implementation and to the development of a shared, reusable, secure, scalable software. Its Responsibility of Firmware Engineer to Enrich & foster climate of innovation to drive growth & accelerate capability development, which includes, Contribution in product development & technology innovation by understanding product requirements, design & development, validation & feature enhancements using programming languages like Assembly, C on embedded systems. Contribute in Project, process, and overall technical execution on firmware development activities of product development. Collaborate with global product engineering team and perform software development activities during project execution. Firmware Engineer should be proficient with current firmware development technology, tools and practices, and have capabilities in quickly learning and developing a large set of communication protocol technologies, languages C, C++ and concurrent software development. Basic Hardware Design Knowledge and Hardware/Firmware Debugging Skills Hand on experience of lab instruments – Oscilloscopes, Logic Analyzers etc. Develops an understanding of both technology and product concepts and is able to articulate product and software design. Ensures quality of delivery in accordance with the plan adhering to the standard practices used in agile/waterfall model. Participate in solution and code reviews with team members for modules/tasks and ensuring that best practices and efficient coding standards are adhered to. Work directly with stakeholders, engineering, and test to create high quality products that solve customer problems. Propose and provide innovative, competitive technical solutions which can make significant business impact and provide value to stakeholders. Protects intellectual property through patent disclosures. Skills: Demonstrated skill in developing original designs with C/C++ in embedded environments including bare-metal, multi-threaded RTOS, and embedded operating systems. Must have specific experience with common 8/16/32-bit microcontroller and/or embedded processing platforms such as STM32 and ESP32. Experinece in independently using electronics lab equipment to develop/troubleshoot low-level drivers and hardware integration for interfaces such as I2C, SPI, UART, USB, etc. Must have a strong understanding of embedded software design and architectural concepts as well as the integration between firmware and hardware. Experience with Agile methodologies and scrum teams is preferable. Well-developed written and verbal communication skills. Skilled in writing specifications and end-user documentation. Experience with software tools like JIRA, JAMA, Coverity, Black Duck is preferable. Must have a strong understanding of software development tools and methodologies used in the context of embedded systems. Familiarity with source control via established systems such as Git. Qualifications: Qualification - BTech/BE or MTech/ME 4-6 Years of experience Skills: Embedded C coding expereince Should have expereince in RTOS Excellent communication skills and the ability to work with various cultures across the globe ]]>

Job Area: Engineering Group, Engineering Group > Software Engineering General Summary: As a Product Security Engineer focused on vulnerability research and exploit mitigation, you will play a critical role in securing software systems by identifying and mitigating vulnerabilities at both the source code and binary levels. This role is ideal for someone who is passionate about software security, has a deep understanding of C/C++ internals, and enjoys building and applying tools to uncover subtle flaws before attackers do. Your primary focus will be on analyzing C/C++ source code using static analysis techniques, both manual and automated, to detect memory safety issues, logic errors, and insecure coding patterns. You will work closely with development teams to integrate and fine-tune sanitizers (such as ASan, UBSan, and MSan) and other compiler-based instrumentation to proactively catch bugs during development and testing. In addition to source-level work, you will also analyze ARM binaries to identify vulnerabilities in compiled code, especially in cases where source is unavailable or incomplete. This includes reverse engineering, binary static analysis, and applying fuzzing techniques to validate findings and uncover additional issues. A key part of your role will involve evaluating and implementing exploit mitigation strategies (e.g., stack canaries, ASLR, DEP, CFI) and ensuring they are effectively deployed across the software stack. You will also monitor external security incidents (e.g., CVEs, threat reports, zero-days) to identify detection gaps in current tooling and processes, and work to close those gaps through improved analysis, tooling, and secure coding guidance. This is a hands-on, engineering-focused role that blends security research, tool development, and collaborative problem-solving. Youll work alongside developers, security engineers, and incident responders to ensure that vulnerabilities are not only found, but also understood, mitigated, and prevented in the future. Required Qualifications: Strong proficiency in C and C++, with deep understanding of memory management and low-level programming. Experience with ARM architecture, including reverse engineering and binary analysis. Experience with embedded device security architectures. Proficiency with static analysis tools (e.g., CodeQL, Klocwork, Coverity, Helix QAC, Parasoft, Clang Static Analyzer). Hands-on experience with fuzzing frameworks (e.g., AFL++, libFuzzer, Honggfuzz). Familiarity with exploit mitigation techniques and their implementation in modern toolchains and operating systems. Experience analyzing real-world vulnerabilities and applying lessons learned to improve detection capabilities. Strong understanding of common vulnerability classes (e.g., buffer overflows, UAF, race conditions). Proficiency with reverse engineering tools (e.g., Ghidra, IDA Pro, Binary Ninja). Threat modelling to identify targets for vulnerability detection. Familiarity with AI advances in this area. Excellent written communication skills. Minimum Qualifications: Bachelor's degree in Engineering, Information Systems, Computer Science, or related field and 4+ years of Software Engineering or related work experience. OR Master's degree in Engineering, Information Systems, Computer Science, or related field and 3+ years of Software Engineering or related work experience. OR PhD in Engineering, Information Systems, Computer Science, or related field and 2+ years of Software Engineering or related work experience. 2+ years of work experience with Programming Language such as C, C++, Java, Python, etc. Preferred Qualifications: Knowledge of symbolic execution, taint analysis, or dynamic binary instrumentation. Exposure to LLVM Compiler, particularly writing passes and Clang Static Analysis checkers. Contributions to open-source security tools or public vulnerability disclosures. Experience in working with external security researchers. Education qualifications: Bachelors degree or above in Computer Science, Computer Security, Electrical Engineering, or a related field, or equivalent practical experience. Applicants Qualcomm is an equal opportunity employer. If you are an individual with a disability and need an accommodation during the application/hiring process, rest assured that Qualcomm is committed to providing an accessible process. You may e-mail disability-accomodations@qualcomm.com or call Qualcomm's toll-free number found here. Upon request, Qualcomm will provide reasonable accommodations to support individuals with disabilities to be able participate in the hiring process. Qualcomm is also committed to making our workplace accessible for individuals with disabilities. (Keep in mind that this email address is used to provide reasonable accommodations for individuals with disabilities. We will not respond here to requests for updates on applications or resume inquiries). Qualcomm expects its employees to abide by all applicable policies and procedures, including but not limited to security and other requirements regarding protection of Company confidential information and other confidential and/or proprietary information, to the extent those requirements are permissible under applicable law. To all Staffing and Recruiting Agencies Please do not forward resumes to our jobs alias, Qualcomm employees or any other company location. Qualcomm is not responsible for any fees related to unsolicited resumes/applications. If you would like more information about this role, please contact Qualcomm Careers.

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : DevSecOps Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :To play a key role in enabling successful project delivery across multiple projects. This role expects you to specialize in a range of security domains, including penetration testing, dynamic and static application security testing, software composition analysis, security architecture review and container security. Additionally, you provide comprehensive support in vulnerability management, service monitoring, and DevSecOps practices. Roles & Responsibilities:-Should have hands-on experience and knowledge of manual and automated penetration testing on the web, mobile and cloud-based applications.-Should have hands-on experience and knowledge of DAST (Dynamic Application Security Testing) to identify runtime vulnerabilities in staging and production environments.-Should have hands-on experience and knowledge of SAST (Static Application Security Testing) for early-stage source code and binary analysis.-Should have hands-on experience and knowledge of SCA (Software Composition Analysis) to detect open-source risks and license compliance issues.-Should have hands-on experience and knowledge of executing SAR (Security Architecture Review) of complex and cloud-based application and should be able to strategize risk remediation with the stakeholders or Security Architect.-Should have hands-on experience and knowledge of integrating security tools into CI/CD pipelines (e.g., Jenkins, GitHub Actions, GitLab CI).-Should have hands-on experience and knowledge of enforcing policy-as-code, shift-left security testing, and secure code delivery practices and automate security checks for container images and Kubernetes workloads.-Should be able to scan and harden docker containers using industry-standard tools.-Should be able to monitor vulnerabilities in container registries and orchestrators (e.g., Kubernetes, ECS).-Skilled in communicating security findings to technical and non-technical stakeholders.-Contribute to secure architecture reviews, risk assessments, and compliance initiatives.-Should be able to manage clients and various stakeholders.Should be a good people manager and should have experience of people and project management. Professional & Technical Skills: Tools & Technologies:Pentest Tools:Burp Suite Pro, OWASP ZAP, Nmap, Postman, Kali Linux,DAST/SAST/SCA:Fortify, Checkmarx, Veracode, Coverity, AppScan, Black Duck, Snyk,DevSecOps:GitHub Actions, Jenkins, GitLab, Docker, Kubernetes,VM Tools:Qualys, Tenable, ThreadFix,Monitoring:ServiceNow, Jira, Confluence-Should be able to collaborate with infrastructure and DevOps teams to secure cloud-native deployments.-Should be able to identify, triage, and manage vulnerabilities using centralized platforms (e.g., ThreadFix).-Should track vulnerability lifecycle from detection through remediation and reporting.-Should support real-time service monitoring to maintain system integrity and threat detection coverage. Additional Information:- The candidate should have minimum 7.5 years of experience in DevSecOps.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Ability to work in a very dynamic and fast paced project execution while coordinating work efforts across multiple agile teams. Areas of Responsibility: Must be autonomous/self-starter will be a part of a team driving adoption of DevOps/CI/CD solutions Understand the complete software development life cycle (SDLC) Develop with development team, methods that could enable them to build and release their software easily Active participation in driving the various developer communities like Jenkins, Gitlab, Python, CI/CD, etc., Strong communication skills, with the ability to explain complex technical concepts to non-technical team members Ability to coordinate implementation with IT managers, internal stakeholders, and developers to deliver comprehensive solutions and drive adoption Must possess strong analytical, research, technical, and problem-solving capabilities, and a demonstrated ability to broadly apply these skills Education: Bachelors / Master’s degree in engineering – Electronics or Computer Science Experience: Industrial experience of 1-2 years in DevOps (continuous integration and delivery) Expertise in programming languages Python or Java or C# Experience in developing automation framework Expertise and working knowledge of Agile Software Development Methodology Hands-on experience in scripting(shell/batch/python/groovy), automation, DevOps tools and methodologies Knowledge of software architecture and design Build Automation Engine: Jenkins, Gitlab Static Code Analysis tools: SonarQube, Pylint, Coverity, FindBugs etc Version Control Systems: Git, Bitbucket, Gitlab SCM, Branching strategy Dependency and Package management tools: Pip, Conda, Poetry, Maven, etc Build systems: Make, CMake Binary Management Tools: Artifactory, Nexus OS: Windows Tracking Tools: Jira/Confluence Configuration management tool: Puppet Use and integrate different industry standard tools Specific or Entrepreneurial Knowledge: Experience in docker or Kubernetes is added advantage Experience in adhering to SDLC (processes) #WeAreIn for driving decarbonization and digitalization. As a global leader in semiconductor solutions in power systems and IoT, Infineon enables game-changing solutions for green and efficient energy, clean and safe mobility, as well as smart and secure IoT. Together, we drive innovation and customer success, while caring for our people and empowering them to reach ambitious goals. Be a part of making life easier, safer and greener. Are you in? We are on a journey to create the best Infineon for everyone. This means we embrace diversity and inclusion and welcome everyone for who they are. At Infineon, we offer a working environment characterized by trust, openness, respect and tolerance and are committed to give all applicants and employees equal opportunities. We base our recruiting decisions on the applicant´s experience and skills. Please let your recruiter know if they need to pay special attention to something in order to enable your participation in the interview process. Click here for more information about Diversity & Inclusion at Infineon.

About the position: F5 is looking for a hands-on Security Engineer III with experience owning vulnerability management and code security program. F5s Edge 2.0 platform provides global, scalable, and secure way to deploy applications! In this position, you will have responsibility for vulnerability management of open-source components in the software components that make up the platform. You will also be responsible for code security and handle static and multifaceted code scanning and write policies and procedures around the lifecycle of the code and associated vulnerabilities. Responsibilities: We collaborate with software architects, security defenders, Operations, SRE, compliance specialists, and business leaders to understand the components of the platform and their requirements around vulnerability management, static and dynamic code analysis depending on the components structure and place in the platform. We write and maintain policies and procedures around vulnerability management and code analysis following industry methodologies and compliance directives. We integrate with scanning tools and provide mentorship to the developers around integration, how to read the findings, and how to improve the output. We work with architects of underlying frameworks to minimize the number of reported vulnerabilities when there is a significant code reuse. We work with other members of the DevOps team to introduce tooling to increase clarity and better quantify the vulnerability remediation. We work with engineering teams to incorporate the best standards from vulnerability management and code analysis into the SDLC. We work with other team members to safely introduce dynamic code analysis tools. We participate in Incident Response when appropriate. Minimum qualifications: BS degree in Computer Science or equivalent with 4+ years of secure software development experience. Good understanding of Docker container building process. Experience with vulnerability management systems like Snyk, Whitesource, Trivy, Dependency-check, Nancy etc. Experience with SAST tools like Coverity, FindSecBugs, Fortify, Veracode, etc. Familiarity with microservices architecture, Docker and Kubernetes. Good understanding of complexities and security challenges in large-scale distributed systems.

About the position: F5 is looking for a hands-on Security Engineer III with experience owning vulnerability management and code security program. F5s Edge 2.0 platform provides global, scalable, and secure way to deploy applications! In this position, you will have responsibility for vulnerability management of open-source components in the software components that make up the platform. You will also be responsible for code security and handle static and multifaceted code scanning and write policies and procedures around the lifecycle of the code and associated vulnerabilities. Responsibilities: We collaborate with software architects, security defenders, Operations, SRE, compliance specialists, and business leaders to understand the components of the platform and their requirements around vulnerability management, static and dynamic code analysis depending on the components structure and place in the platform. We write and maintain policies and procedures around vulnerability management and code analysis following industry methodologies and compliance directives. We integrate with scanning tools and provide mentorship to the developers around integration, how to read the findings, and how to improve the output. We work with architects of underlying frameworks to minimize the number of reported vulnerabilities when there is a significant code reuse. We work with other members of the DevOps team to introduce tooling to increase clarity and better quantify the vulnerability remediation. We work with engineering teams to incorporate the best standards from vulnerability management and code analysis into the SDLC. We work with other team members to safely introduce dynamic code analysis tools. We participate in Incident Response when appropriate. Minimum qualifications: BS degree in Computer Science or equivalent with 4+ years of secure software development experience. Good understanding of Docker container building process. Experience with vulnerability management systems like Snyk, Whitesource, Trivy, Dependency-check, Nancy etc. Experience with SAST tools like Coverity, FindSecBugs, Fortify, Veracode, etc. Familiarity with microservices architecture, Docker and Kubernetes. Good understanding of complexities and security challenges in large-scale distributed systems.

About the position: F5 is looking for a hands-on Security Engineer III with experience owning vulnerability management and code security program. F5s Edge 2.0 platform provides global, scalable, and secure way to deploy applications! In this position, you will have responsibility for vulnerability management of open-source components in the software components that make up the platform. You will also be responsible for code security and handle static and multifaceted code scanning and write policies and procedures around the lifecycle of the code and associated vulnerabilities. Responsibilities: We collaborate with software architects, security defenders, Operations, SRE, compliance specialists, and business leaders to understand the components of the platform and their requirements around vulnerability management, static and dynamic code analysis depending on the components structure and place in the platform. We write and maintain policies and procedures around vulnerability management and code analysis following industry methodologies and compliance directives. We integrate with scanning tools and provide mentorship to the developers around integration, how to read the findings, and how to improve the output. We work with architects of underlying frameworks to minimize the number of reported vulnerabilities when there is a significant code reuse. We work with other members of the DevOps team to introduce tooling to increase clarity and better quantify the vulnerability remediation. We work with engineering teams to incorporate the best standards from vulnerability management and code analysis into the SDLC. We work with other team members to safely introduce dynamic code analysis tools. We participate in Incident Response when appropriate. Minimum qualifications: BS degree in Computer Science or equivalent with 4+ years of secure software development experience. Good understanding of Docker container building process. Experience with vulnerability management systems like Snyk, Whitesource, Trivy, Dependency-check, Nancy etc. Experience with SAST tools like Coverity, FindSecBugs, Fortify, Veracode, etc. Familiarity with microservices architecture, Docker and Kubernetes. Good understanding of complexities and security challenges in large-scale distributed systems.

About the position: F5 is looking for a hands-on Security Engineer III with experience owning vulnerability management and code security program. F5s Edge 2.0 platform provides global, scalable, and secure way to deploy applications! In this position, you will have responsibility for vulnerability management of open-source components in the software components that make up the platform. You will also be responsible for code security and handle static and multifaceted code scanning and write policies and procedures around the lifecycle of the code and associated vulnerabilities. Responsibilities: We collaborate with software architects, security defenders, Operations, SRE, compliance specialists, and business leaders to understand the components of the platform and their requirements around vulnerability management, static and dynamic code analysis depending on the components structure and place in the platform. We write and maintain policies and procedures around vulnerability management and code analysis following industry methodologies and compliance directives. We integrate with scanning tools and provide mentorship to the developers around integration, how to read the findings, and how to improve the output. We work with architects of underlying frameworks to minimize the number of reported vulnerabilities when there is a significant code reuse. We work with other members of the DevOps team to introduce tooling to increase clarity and better quantify the vulnerability remediation. We work with engineering teams to incorporate the best standards from vulnerability management and code analysis into the SDLC. We work with other team members to safely introduce dynamic code analysis tools. We participate in Incident Response when appropriate. Minimum qualifications: BS degree in Computer Science or equivalent with 4+ years of secure software development experience. Good understanding of Docker container building process. Experience with vulnerability management systems like Snyk, Whitesource, Trivy, Dependency-check, Nancy etc. Experience with SAST tools like Coverity, FindSecBugs, Fortify, Veracode, etc. Familiarity with microservices architecture, Docker and Kubernetes. Good understanding of complexities and security challenges in large-scale distributed systems.