Technical advisor

What We Are Looking For

We are looking for a professional with deep knowledge in Application Security, including expertise in scan technologies such as SAST, DAST, SCA, and IAST. The ideal candidate is a thought leader in DevSecOps, with extensive hands-on experience in secure SDLC processes. They should possess strong competence in software and Infrastructure-as-Code, particularly with languages and tools like Python, Java, Kubernetes, and Helm. Additionally, the candidate should have experience integrating security tools within CI/CD pipelines and providing consulting on technical and process analyses.

What Does the Job Involve

1. Engaging with customers to understand their security requirements and identify potential security gaps in their application environment.
2. Participating in customer meetings and presentations & supporting the sales team with objection handling.
3. Providing technical expertise and support to the sales team by conducting tailor-made product demonstrations based on customer requirements.
4. Conducting product evaluations and proof-of-concept (POC) demonstrations to help customers understand how the solutions work.
5. Putting together a POC document template with industry use cases, success criteria to be discussed with customers before start of a POC for maximizing output & better understanding of customer landscape.
6. Establishing a regular cadence with the customer to execute POCs without the help/support of a TA to support the customer in executing the POC in time.
7. Helping respond to RFPs/tenders by collaborating with professional services teams, product management teams & partner technical teams (if any). Detailed responses to be documented with use cases details, diagrams etc. instead of a straight Yes/No response.
8. Supporting the Sales team in sizing licenses for the customer based on understanding of the requirements.
9. Developing technical and business knowledge around competitive solutions and maintaining up-to-date knowledge of industry trends.
10. Participating in industry events, conferences, and webinars to showcase the security solutions and create awareness.
11. Conducting bi-weekly technical webinars around new features, basic understanding of solutions, etc. for the specific region TA is responsible for.
12. Supporting post-sales activities such as COE Support, basic training, and ongoing customer support to ensure customer satisfaction & foster business growth.

Qualifications

1. Knowledge on Application Security & all scan technologies like SAST, DAST, SCA, IAST etc.
2. Professional-level DevSecOps knowledge and thought leadership covering the majority of the secure SDLC.
3. Competent, hands-on skills crafting software and Infrastructure-as-Code, particularly using Python, Java, Kubernetes, Helm.
4. Competent, hands-on experience with modern software development tools and processes.
5. Competent, hands-on experience with SCA and SAST security tool integration within CI/CD pipelines.
6. Some experience with consulting, conducting technical and process analyses, and the crafting of documentation – including leveraging wikis along with traditional document formats.
7. Assisting Engineering teams to build Threat Models, fix issues identified during SAST and DAST scans and adhere to security policies.
8. Keeping track of vulnerabilities and aiding towards closure.
9. Disseminating information about secure coding guidelines to the teams.
10. Staying current on the vulnerabilities and remediation, sharing knowledge with Engineering teams.
11. Knowledge and experience in working with API & Mobile security and mitigations.
12. Knowledge and understanding of secure SDLC (System Development Life Cycle) methodologies.
13. Experience in drafting application security coding standards.
14. Knowledge and experience in identifying and suggesting mitigations to OWASP top 10, CWE/SANS top 25 to development teams.

Benefits

Bonus: Full benefits package that begins on Day 1 of employment
Competitive PTO
Location: Angola, Morocco, South Africa, Egypt