Haystack
← Back to Jobs
Technology

DevSecOps Application Security Engineer

Infosys Technologies LtdAtlanta, GA🇺🇸United StatesPosted 6 Jul 2026

Quick Overview

Work Type
Hybrid
Level
Mid Senior

Job Description

Your contribution to the team:
A collaborative spirit and excellent communication skills.
Ability to handle complex incidents and implement resolutions
A knack for conducting IT infrastructure assessment and identifying key optimization opportunities
Focused approach towards deployment management, system optimization, and process automation initiatives including sector specific focus
The ability to work with cross-functional teams
Required Skills :
Application Security Testing: Conduct SAST/SCA using GHAS and DAST using Burp Suite; validate and classify vulnerabilities aligned with OWASP.

DevSecOps & Integration: Integrate GHAS into CI/CD, automate scans across SDLC, configure policies, reduce false positives, and enable shift-left security with development teams.

Vulnerability Management: Analyze findings, provide remediation guidance, track vulnerabilities through lifecycle, and support risk-based prioritization.

Reporting & Stakeholder Management: Prepare technical and executive reports, communicate findings with stakeholders, and support audits, compliance, and AppSec initiatives.
Preferred Skills :
Security Advisory & Review: Conduct secure code reviews and architecture level assessments; Coordinate with development teams on secure coding and mitigation strategies.

Knowledge Of: SDLC and DevSecOps practices, microservices/API/cloud security, strong analytical/problem-solving skills, and stakeholder communication/consulting experience.

Good to Have:

Exposure to SAST (Fortify, SonarQube), DAST (Netsparker, Fortify on Demand), and SCA (BlackDuck, Dependabot) tools
Certifications: CEH, OSCP, GWAPT, CSSLP, CISSP
Experience in threat modeling and architecture reviews

Skills

Microservices
OWASP
SonarQube
Stakeholder Management

Similar jobs