Job Information
Trellix Senior Security Researcher in Bangalore, India
Job Title:
Senior Security Researcher
Role Overview:
We are seeking a highly skilled Security Engineer with 5 to 7 years of experience in Secure Software Development Life Cycle (SDLC), Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Penetration Testing, and Fuzzing. The ideal candidate will be responsible for ensuring the security of our organization's applications, systems, and infrastructure by implementing and managing robust security measures throughout the development lifecycle.
Company Overview:
Trellix is a global company redefining the future of cybersecurity. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with an extensive partner ecosystem, accelerate technology innovation through machine learning and automation to empower over 40,000 business and government customers. More at https://trellix.com .
About the Role:
Collaborate with development teams to integrate security practices into the Software Development Life Cycle (SDLC).
Provide guidance and assistance in implementing secure coding practices and principles.
Conduct security code reviews and provide feedback to development teams.
Utilize SAST tools to analyze source code for security vulnerabilities.
Review SAST scan results and collaborate with development teams to remediate identified issues.
Conduct DAST scans on applications to identify security weaknesses and vulnerabilities.
Plan and execute penetration tests on applications, systems, and networks.
Identify and exploit security vulnerabilities to assess the organization's security posture.
Develop and execute fuzzing techniques to identify software vulnerabilities.
Analyze fuzzing results and work with development teams to mitigate discovered vulnerabilities.
Manage and maintain security testing tools and platforms, ensuring they are up-to-date and effective.
Evaluate new security tools and technologies to enhance the organization's security capabilities.
About You:
5 to 7 years of experience in a security engineering role, with a focus on secure SDLC, SAST, DAST, Penetration Testing, and Fuzzing.
Strong understanding of application security principles and common vulnerabilities (OWASP ASVS, CWE).
Experience with one or more scripting languages (Python, Bash, PowerShell) for automation and tool development.
Certifications such as OSCP or GPEN or GXPN.
Excellent communication and collaboration skills, with the ability to work effectively across teams and departments.
Company Benefits and Perks:
We work hard to embrace diversity and inclusion and encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.
Retirement Plans
Medical, Dental and Vision Coverage
Paid Time Off
Paid Parental Leave
Support for Community Involvement
We're serious about our commitment to diversity which is why we prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.
Trellix is a global company redefining the future of cybersecurity. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with an extensive partner ecosystem, accelerate technology innovation through machine learning and automation to empower over 40,000 business and government customers. More at https://trellix.com .
Trellix
-
- Trellix Jobs
