Senior Product Security DevSecOps Engineer

As a Senior Product Security DevSecOps Engineer, you will be responsible for:

• Security Integration: Embed security controls and best practices into CI/CD pipelines and infrastructure as code (IaC).
• Automation: Develop and maintain automated security testing tools and scripts for static and dynamic analysis.
• Monitoring & Incident Response: Implement monitoring tools to detect and respond to security threats in real-time.
• Collaboration: Work closely with development, operations, and security teams to ensure secure software delivery.
• Compliance: Ensure systems and processes comply with relevant security standards (e.g., ISO 27001, NIST, SOC 2).
• Vulnerability Management: Conduct regular vulnerability assessments and manage remediation efforts.
• Cloud Security: Secure cloud environments (AWS, Azure, GCP) using native and third-party tools.
• Documentation: Maintain clear documentation of security policies, procedures, and incident reports.
• OWASP CI/CD top 10

Fuel your passion

To be successful in this role you will:

• Bachelor's degree from an accredited university or college. Minimum of 6 additional years of experience in Product Security.
• Bachelor’s degree in Computer Science, Information Security, or related field.
• 6+ years of experience in DevOps, Security Engineering, or related roles.
• Proficiency with CI/CD tools (e.g., Jenkins, GitLab CI, CircleCI).
• Experience with containerization and orchestration (Docker, Kubernetes).
• Strong scripting skills (Python, Bash, etc.).
• Familiarity with security tools (e.g., Snyk, Aqua, Checkmarx, Nessus).
• Hands-on experience with cloud platforms (AWS, Azure, GCP).
  • Knowledge of IaC tools (Terraform, CloudFormation, Ansible).