Job Description

About KenvueAbout KenvueKenvue is the worlds largest pure-play consumer health company by revenue. Built on more than a century of heritage, our iconic brands, including Aveeno\xc2\xae, Johnsons\xc2\xae, Listerine\xc2\xae, and Neutrogena\xc2\xae are science-backed and recommended by healthcare professionals around the world. At Kenvue, we believe in the extraordinary power of everyday care and our teams work every day to put that power in consumers hands and earn a place in their hearts and homes.Not all products mentioned are sold globally.Job Location: Kenvue GCC, BangaloreResponsibilities:

• Conduct comprehensive security assessments of applications to identify vulnerabilities and weaknesses.
• Perform penetration testing, code reviews, and vulnerability scanning to ensure the security of web and mobile applications.
• Collaborate with development teams to provide guidance on secure coding practices and assist in the remediation of identified security issues.
• Develop and maintain security standards, policies, and procedures related to application security.
• Stay current with the latest security trends, threats, and vulnerabilities affecting application security.
• Participate in incident response and security incident investigations related to application security.
• Utilize and manage security tools such as Snyk, OWASP ZAP, and custom php tools

• Bachelor's degree in Computer Science, Information Security, or related field or 5+ years of cyber security experience.
• 2 years of Azure (or AWS) security experience, identity and access, applications, and networking
• Knowledge of Azure functions a plus
• Microsoft Power Platform experience, Power App development experience a plus
• Knowledge of WAF solutions such as Cloudflare, Akamai, etc.
• Familiarity with security assessment tools such as Snyk, OWASP ZAP, etc.
• Familiarity with programming/scripting skills in languages such as php, Python, Java, or similar.
• Knowledge of application security assessments, vulnerability testing, and secure code reviews.
• Knowledge of web application security vulnerabilities and common attack vectors (e.g., OWASP Top 10).
• Familiarity with programming/scripting skills in languages like Java, Python, Ruby, or similar.
• Knowledge of the roles, processes, and tools to enable a high-performing DevOps practice.
• Relevant certifications such as Azure Security, CISSP, CEH, CompTIA Security+, are a plus.
• Excellent problem-solving and analytical skills, along with effective communication and teamwork abilities.
• Knowledge of Atlassian tools such as Jira and Confluence.
• Knowledge of DNS and IP management

Kenvue