Associate DevSecOps Engineer

Job Description
Associate DevSecOps Engineer
Wilmington, DE
Monday - Friday 8:00 - 5:00
Onsite/Hybrid
Some of the things you'll be doing:

• Provide expertise in the DevSecops ,specializing in web application security, SCA, SAST, and DAST services
• Developing Policies to protect web application and API's from malicious payload attacks, provide virtual patching capabilities and validation with Security Testing.
• Assist in developing an automated security framework for robust deployment tools and processes, leveraging various scripting languages and open-source solutions.
• Manage and maintain Web Application Firewall (WAF) inventory, ensuring effective configuration, monitoring, and reporting.
• Contribute to observability initiatives by integrating security telemetry, dashboards, and alerts into monitoring systems.
• Explore and apply AI-driven security solutions for anomaly detection, threat prediction, and automated remediation.Help evolve CSC's application security functions and services.
• Identify security exposures and develop mitigation plans.
• Identify, report and fix technical debt.
• Assist Senior Application Security on all application security activities.
• Be productive and participate in security initiatives with minimal supervision.
• Experience with SAST (Static Application Security Testing), SCA (Software Composition Analysis), DAST (Dynamic Application Security Testing), and IaC (Infrastructure as Code) tools.
• Experience with data visualization tools (e.g., Power BI).
• Familiarity with securing architecture, APIs, and web applications.
• Knowledge of common and emerging security threats.
• In-depth knowledge of security best practices.
• Exceptional analytical aptitude and attention to detail.
• Excellent communication skills.
• Fast learner / a strong willingness to learn.
• Good team player who is self-motivated and well organized.

What technical skills, experience, and qualifications do you need?

• 0-2 years of experience in an Application Security or related position.
• Familiarity in designing, implementing solutions like SAST (Static Application Security Testing), SCA (Software Composition Analysis), DAST (Dynamic Application Security Testing), and IaC (Infrastructure as Code) tools.
• Familiarity with Information Security frameworks/standards (e.g., CIS, NIST, RFC2196).
• Familiarity with common security libraries, security controls, and common security flaws.
• Strong troubleshooting and problem-solving mindset.
• Exposure or familiarity with Python, PowerShell, and/or Bash.
• Experience with SQL databases.
• Familiarity with securing cloud environments and knowledge of cloud platforms.
• Understanding the application development process.
• Understanding DevSecOps principles and practices.Familiarity with DevSecOps ecosystem: Terraform, Ansible, GitHub, Jenkins, Azure DevOps, SAST, DAST & SCA
• Knowledge of Cloud & Kubernetes Resource Security, Secure Network and Architecture, SDLC standard and policies.
• Familiarity with Web App Protection AWS and Azure App Protection Policy, Configuration, and Security Management tools
• Expertise in Programming languages Python, NodeJS, SQL query and Vulnerable Code remediation.
• Stay up to date with the latest application security threats and trends.
• Understanding of observability tools and practices (e.g., logging, metrics, tracing) to enhance security visibility.
• Interest in leveraging AI/ML techniques for proactive security monitoring and threat detection.

#CSC #CSCCareers #LI-HL1
About Us
CSC is a global business, legal, and financial services company based in Wilmington, Delaware, USA, providing knowledge-based solutions to clients worldwide. We have offices and capabilities in over 140 jurisdictions in the Americas, Europe, Asia Pacific, and the Middle East, and more than 8,000 colleagues. We are the business behind business.®
Visit our careers site to learn more about CSC and our commitment to our clients, communities, and each other.
CSC is committed to creating a feeling of belonging through a diverse and growth-oriented environment where everyone is valued.
CSC colleagues have global career opportunities and excellent benefits, including annual success-sharing bonuses or commission plans based on individual performance. To learn more, visit cscglobal.com/service/careers.
We offer a range of support to colleagues with disabilities, ensuring people have the necessary resources to thrive in their roles. We encourage candidates to work closely with our talent acquisition partners to convey their specific needs. Our commitment to accessibility reflects our broader dedication to diversity and belonging,
CSC only accepts resumes from employment agencies that are part of our approved supplier program. Resumes submitted from other agencies either to talent acquisition, our hiring leaders, employees, or through any other mechanism other than our supplier process, will not be eligible to claim related fees and the submitted resumes will be considered property of CSC.
We encourage candidates to apply directly to our website and not through third-party sources.
Disclaimer: The information above describes the general nature and level of work performed by employees in this role. It is not intended to describe all duties, responsibilities, and qualifications.
About the Team
CSC is a global business, legal, and financial services company based in Wilmington, Delaware, U.S., providing market-leading expertise and knowledge-based solutions to clients worldwide. We have an unmatched global reach with offices and capabilities in more than 140 jurisdictions in the Americas, Europe, Asia Pacific, and the Middle East, and more than 8,500 colleagues. We are the business behind business.®
Visit our careers site to learn more about CSC, Our Values, and our unwavering commitment to our clients, communities, and each other.
CSC is dedicated to creating a feeling of belonging through a diverse and growth-oriented environment where everyone is respected. We offer a range of support to colleagues with disabilities, ensuring people have the necessary resources to thrive in their roles. We encourage candidates to work closely with our talent acquisition partners to convey their specific needs. Our commitment to accessibility reflects our broader dedication to diversity and belonging.
Colleagues are empowered to own their careers and have access to various career opportunities and excellent benefits, including annual Success Sharing bonuses or commission plans based on individual performance. To learn more, visit cscglobal.com/service/careers.
CSC only accepts resumes from employment agencies that are part of our approved supplier program. Resumes submitted from other agencies either to talent acquisition, our hiring leaders, employees, or through any other mechanism other than our supplier process will not be eligible to claim related fees and the submitted resumes will be considered property of CSC.
We encourage candidates to apply directly through our website and not through third-party sources.
Disclaimer: The information above describes the general nature and level of work performed by employees in this role. It is not intended to describe all duties, responsibilities, and qualifications.