OneMain Financial Jobs

V2Soft is a global leader in IT services and business solutions, delivering innovative and cost-effective technology solutions worldwide since 1998. We have headquarteerd in Bloomfiled Hills, MI and have 16 offices spread across six countries. We partner with Fortune 500 companies to address complex business challenges. Our services span AI, IT staffing, cloud computing, engineering, mobility, testing, and more. Certified with CMMI Level 3 and ISO standards, V2Soft is committed to quality and security. Beyond our work, we actively support local communities and non-profits, reflecting our core values. Join us to be part of a dynamic and impactful global company! Please visit us at www.v2soft.com to know more .

Job Summary: Application Security Operations.

Oversee the operational use and effectiveness of application security tools, Dynamic Application Security Testing (DAST), Static Application Security Testing (SAST), and Software Composition Analysis (SCA). Collaborate with development and DevOps teams to integrate security testing into the CI/CD pipeline and ensure vulnerabilities identified by these tools are triaged and remediated effectively. Provide guidance on interpreting scan results and prioritizing remediation efforts for application-level vulnerabilities. Handling container security, ensuring base images are updated

Coud Security :* In-depth knowledge and hands-on experience with Microsoft Azure security services, specifically Microsoft Defender for Cloud, Entra ID and Azure Sentinel (SIEM/SOAR) Proficiency in assessing and hardening Azure environments, including IaaS, PaaS, and network security configurations. Defining and enforcing policies for Terraform, ARM templates, or Bicep.

Infrastructure Vulnerability Management:* Proactively manage and conduct regular vulnerability assessments and remediation efforts for our infrastructure using Microsoft Defender for Cloud Ensure continuous security posture management for cloud and hybrid environments, identifying misconfigurations and security weaknesses. Work with relevant teams to prioritize and implement recommended security controls and patches identified through Defender for Cloud.

Essential Job Functions:

Support * Vulnerability Assessment * Threat Intelligence * Application Security * Secure Cloud Configuration * Identity and Access Management

Other Responsibilities:

Work with the Security team and the Application on other technical security-related issues. Maintain security tools and software Consult with developers on application security

Manage the security ticketing system Minimum Qualifications and Job Requirements: 10 - 12 years Application and/or Infrastructure security experience ISO experience or certification

Certifications (one or more highly preferred): * CISSP (Certified Information Systems Security Professional) * CISM (Certified Information Security Manager) * AZ-500 (Microsoft Certified: Azure Security Engineer Associate) * CySA+ (CompTIA Cybersecurity Analyst+) * CEH (Certified Ethical Hacker) V2Soft is an Equal Opportunity Employer ( EOE). We welcome applicants from all backgrounds, including individuals with disabilities and veterans. - to view all of our open opportunities and to learn more about our benefits.