HCL AppScan Professional Services _...

About the Job:

Greetings from HCL Software, a dedicated Product Development Division of HCL Tech. We specialize in developing, marketing, selling, and supporting over 20 product families across Customer Experience, Digital Solutions, Secure DevOps, Security & Automation.

Job Overview:

We are looking for a highly experienced Application Security Practitioner with a robust background in application security, DevSecOps solutions, and customer engagement. The ideal candidate will possess at least four years of experience in application security and three years in team management, demonstrating a proven ability to design security solutions, manage global projects, and foster strong customer relationships. This position offers a remote work opportunity.

Domain: Application Security (DAST, SAST, IAST, SCA)

Required Technical Skills & Qualifications:

• 8+ years of overall experience in IT security or Software Development.
• 2+ years of hands-on experience with DAST, SAST, IAST, and SCA tools and methodologies.
• 2+ years of experience in team management, including mentoring and leadership.
• Strong expertise in DevSecOps principles and integrating security tools into CI/CD pipelines.
• Experience in RFP/RFI responses, solution architecture, and effort estimation.
• Proven track record in managing large-scale global projects and customer engagements.
• Deep understanding of secure coding practices, threat modeling, and application security testing techniques.
• Excellent communication and stakeholder management skills.

Key Responsibilities:

Application Security & DevSecOps Solutions

• Lead the design, implementation, and optimization of DevSecOps solutions tailored to customer needs.
• Analyze and understand customer application security requirements, recommending the most suitable security solutions.
• Provide expert guidance on DAST, SAST, IAST, and SCA tools and methodologies.
• Guide customers in implementing secure SDLC practices and best practices for integrating security into CI/CD pipelines.

Pre-Sales & Solution Design

• Respond to RFPs and RFIs, providing comprehensive technical and business justifications.
• Estimate project efforts and costs accurately, ensuring optimal resource allocation.
• Collaborate effectively with sales and pre-sales teams to identify and pursue new business opportunities.

Project & Customer Management

• Lead and manage global security projects, ensuring timely delivery and high customer satisfaction.
• Engage proactively with customers to understand their challenges, suggest improvements, and provide expert security guidance.
• Ensure security solutions align with relevant industry standards and compliance requirements.
• Manage escalations and drive proactive issue resolution to maintain service excellence.

Preferred Qualifications:

• Hands-on experience with security tools such as HCL AppScan, Checkmarx, Fortify, Veracode, SonarQube, etc.
• Knowledge of regulatory frameworks including ISO 27001, NIST, OWASP, PCI-DSS, GDPR, or SOC.