İlan Açıklama

Get ready to take your place on n11, an open market platform has made valuable contributions to the e-commerce sector since its establishment by bringing more than 330 thousand registered business partners to customers. 📣We are looking for "Sr. Information Security Administrator & ” to join our team in Technology Department. If you are experienced on some and/or most of the concepts below, we are expecting your application🤩 Who you are Bachelor's degree in Computer Science, Information Security, or a related field. Minimum 4 years of experience in application security, vulnerability management and information security Experience with SAST, DAST, SCA, IAST, IaC, SBOMs and Secret Management Expertise in utilizing various security tools such as Burp Suite, OWASP ZAP, Acunetix, Fortify, and Checkmarx, along with vulnerability scanners. Experience with security requirements for APIs. (SOAP, REST, GraphQL etc.) Experience with Manuel Source Code Analysis and Penetration Testing of Mobile and Web Applications. Experience with container security, such as Docker and Kubernetes. Experience with Bug Bounty (Hackerone, Intigriti, Bugcrowd etc.) a plus Familiarity with “secure by design” and “shift left” security principles. Strong knowledge of software security risks and threats (OWASP top 10). Solid understanding of web-based application technologies, web services/APIs, web-based authentication/single sign-on protocol and technologies. Participating in the setup, configuration, and maintenance of security tools on CI/CD infrastructure within the DevSecOps framework. Experience building prototypes of tools and exploits, as well as conducting vulnerability and penetration tests. Strong communication & interpersonal skills, and experience working cross-functionally with various teams Experienced on Google Cloud Experienced in PCI-DSS, ISO 27001, ITIL Processes. What you'll do Perform manual and automated penetration testing on applications to identify and exploit vulnerabilities. Integrate and automate application security testing tools (SAST, DAST, SCA,IaC, Network Scans) Devise, implement, and monitor vulnerability response processes to efficiently remediate critical and zero-day vulnerabilities. Assess potential security vulnerabilities within our applications, and work with development teams to ensure remediation in our established SLAs. Provide training to development teams on secure coding practices and awareness of emerging security threats. Stay abreast of emerging application security trends and threats, researching new attack vectors to update vulnerability management strategies accordingly. Utilize scripting languages (Python, Ruby, Bash, etc.) to build automation tools as needed. Manage DLP, SIEM, PAM, EDR, IAM, DAM , SCC , Mail Gateway Security Tools. Improve General Security of Networks , Cloud and Systems Provide Single Point of Contract for the General information Security. As n11, we care about your Personal Data Security. Please find the Personal Data Protection Information Notice from the link below. https://n11scdn1.akamaized.net/custom/aydinlatma-metni/People-Aydinlatma-Metni.pd