CSC · 1 month ago
Associate DevSecOps Engineer
251 Little Falls Dr., Wilmington, DE, 19808, US
Full-time
Onsite
New Grad, Entry Level
0+ years expCSC is a company focused on application development and support, and they are seeking an Associate DevSecOps Engineer. The role involves providing expertise in DevSecOps, developing security policies, and assisting in the creation of an automated security framework for deployment tools and processes.
ConsultingLegal
Responsibilities
Provide expertise in the DevSecops ,specializing in web application security, SCA, SAST, and DAST services
Developing Policies to protect web application and API’s from malicious payload attacks, provide virtual patching capabilities and validation with Security Testing
Assist in developing an automated security framework for robust deployment tools and processes, leveraging various scripting languages and open-source solutions
Manage and maintain Web Application Firewall (WAF) inventory, ensuring effective configuration, monitoring, and reporting
Contribute to observability initiatives by integrating security telemetry, dashboards, and alerts into monitoring systems
Explore and apply AI-driven security solutions for anomaly detection, threat prediction, and automated remediation.Help evolve CSC’s application security functions and services
Identify security exposures and develop mitigation plans
Identify, report and fix technical debt
Assist Senior Application Security on all application security activities
Be productive and participate in security initiatives with minimal supervision
Qualification
Required
Provide expertise in the DevSecops, specializing in web application security, SCA, SAST, and DAST services
Developing Policies to protect web application and API's from malicious payload attacks, provide virtual patching capabilities and validation with Security Testing
Assist in developing an automated security framework for robust deployment tools and processes, leveraging various scripting languages and open-source solutions
Manage and maintain Web Application Firewall (WAF) inventory, ensuring effective configuration, monitoring, and reporting
Contribute to observability initiatives by integrating security telemetry, dashboards, and alerts into monitoring systems
Explore and apply AI-driven security solutions for anomaly detection, threat prediction, and automated remediation
Help evolve CSC's application security functions and services
Identify security exposures and develop mitigation plans
Identify, report and fix technical debt
Assist Senior Application Security on all application security activities
Be productive and participate in security initiatives with minimal supervision
Experience with SAST (Static Application Security Testing), SCA (Software Composition Analysis), DAST (Dynamic Application Security Testing), and IaC (Infrastructure as Code) tools
Experience with data visualization tools (e.g., Power BI)
Familiarity with securing architecture, APIs, and web applications
Knowledge of common and emerging security threats
In-depth knowledge of security best practices
Exceptional analytical aptitude and attention to detail
Excellent communication skills
Fast learner / a strong willingness to learn
Good team player who is self-motivated and well organized
0-2 years of experience in an Application Security or related position
Familiarity in designing, implementing solutions like SAST (Static Application Security Testing), SCA (Software Composition Analysis), DAST (Dynamic Application Security Testing), and IaC (Infrastructure as Code) tools
Familiarity with Information Security frameworks/standards (e.g., CIS, NIST, RFC2196)
Familiarity with common security libraries, security controls, and common security flaws
Strong troubleshooting and problem-solving mindset
Exposure or familiarity with Python, PowerShell, and/or Bash
Experience with SQL databases
Familiarity with securing cloud environments and knowledge of cloud platforms
Understanding the application development process
Understanding DevSecOps principles and practices
Familiarity with DevSecOps ecosystem: Terraform, Ansible, GitHub, Jenkins, Azure DevOps, SAST, DAST & SCA
Knowledge of Cloud & Kubernetes Resource Security, Secure Network and Architecture, SDLC standard and policies
Familiarity with Web App Protection AWS and Azure App Protection Policy, Configuration, and Security Management tools
Expertise in Programming languages Python, NodeJS, SQL query and Vulnerable Code remediation
Stay up to date with the latest application security threats and trends
Understanding of observability tools and practices (e.g., logging, metrics, tracing) to enhance security visibility
Interest in leveraging AI/ML techniques for proactive security monitoring and threat detection
Company
CSC
CSC is the world’s leading provider of global business administration and compliance solutions, specialized administration services to alternative asset managers across fund strategies, capital markets transactions in public and private markets, domain name system management and digital brand and fraud protection, and corporate tax software solutions.
5001-10000 employees
H1B Sponsorship
CSC has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (7)
2024 (6)
2023 (3)
2022 (6)
2021 (6)
2020 (5)
Funding
Current Stage
Late StageLeadership Team
Chris Salafatinos
CFO
E.J. Dealy
Chief Financial Officer and Executive Vice President of Corporate Development
Recent News
2025-11-19
2025-11-04
Company data provided by crunchbase