AppSec DevSecOps - Dynamic Application Sec testing (DAST)

As a Cybersecurity Specialist at Kyndryl, you will be at the forefront of protecting customers computer systems and networks from cyber threats. Your responsibilities will include: - Utilizing a variety of tools and techniques to defend against cyber threats such as malware, ransomware, phishing attacks, and data breaches - Implementing new cybersecurity systems and policies to ensure the protection of customer data and assets - Monitoring and reviewing potential threats from various cybersecurity systems and conducting proof-of-concepts with new cybersecurity software - Providing automation scripts for threat hunting in customer environments and sharing lessons learned from cyber-attacks - Conducting penetration testing, threat, and vulnerability assessments of applications, operating systems, and networks - Researching and evaluating cybersecurity threats, performing root cause analysis, and assisting in the creation and implementation of security solutions - Working in the area of security innovation to create and experiment with new ideas in cybersecurity Qualifications required for this role include: - 7+ years of experience in configuring and managing DAST scans using Fortify WebInspect - Leading threat modeling and manual validation of Fortify WebInspect findings - Performing manual security testing for business logic and abuse cases - Providing second-level triage of critical/high-risk vulnerabilities - Conducting DAST tool coverage reviews and feature utilization evaluations - Engaging in second-level AppSec reports/findings discussions with application stakeholders Preferred skills and experience: - Guiding application teams in remediation planning and secure design discussions - Ensuring DAST testing and report delivery within SLA, and tracking metrics - Mentoring analysts and contributing to security automation opportunities - Utilizing tools such as MicroFocus Fortify, Web Inspect GitHub, PaloAlto Prisma Cloud At Kyndryl, the sense of belonging and inclusion is fundamental to the culture, encouraging individuals from all backgrounds to apply. The company values empathy, restless learning, and shared success, providing a supportive environment for personal and professional growth. Kyndryl offers a dynamic, hybrid-friendly culture that supports employee well-being and growth. The company's Be Well programs are designed to support financial, mental, physical, and social health. Employees are empowered to make a difference through impactful work that sharpens their skills and fuels their growth. Continuous feedback, personalized development goals, and access to cutting-edge learning opportunities ensure that employees thrive and evolve in their careers. Join Kyndryl's cybersecurity team and be part of a culture that values empathy, growth, and shared success. Thrive in an environment that champions your journey and offers opportunities to shape the future of cybersecurity. As a Cybersecurity Specialist at Kyndryl, you will be at the forefront of protecting customers computer systems and networks from cyber threats. Your responsibilities will include: - Utilizing a variety of tools and techniques to defend against cyber threats such as malware, ransomware, phishing attacks, and data breaches - Implementing new cybersecurity systems and policies to ensure the protection of customer data and assets - Monitoring and reviewing potential threats from various cybersecurity systems and conducting proof-of-concepts with new cybersecurity software - Providing automation scripts for threat hunting in customer environments and sharing lessons learned from cyber-attacks - Conducting penetration testing, threat, and vulnerability assessments of applications, operating systems, and networks - Researching and evaluating cybersecurity threats, performing root cause analysis, and assisting in the creation and implementation of security solutions - Working in the area of security innovation to create and experiment with new ideas in cybersecurity Qualifications required for this role include: - 7+ years of experience in configuring and managing DAST scans using Fortify WebInspect - Leading threat modeling and manual validation of Fortify WebInspect findings - Performing manual security testing for business logic and abuse cases - Providing second-level triage of critical/high-risk vulnerabilities - Conducting DAST tool coverage reviews and feature utilization evaluations - Engaging in second-level AppSec reports/findings discussions with application stakeholders Preferred skills and experience: - Guiding application teams in remediation planning and secure design discussions - Ensuring DAST testing and report delivery within SLA, and tracking metrics - Mentoring analysts and contributing to security automation opportunities - Utilizing tools such as MicroFocus Fortify, Web Inspect GitHub, PaloAlto Prisma Cloud At Kyndryl, the sense of belonging and inclusion is fundamental to the culture, encouraging indi