We are looking for a Principal Security Engineer (DevSecOps) to work in the Cortex DevSecOps group to help secure our immense cloud and on-prem deployments, and will be a security advisor for all infrastructure and application related new developments, as well as overseeing all current infrastructure and processes security improvements.
Helping guide new security initiatives in the product group and thinking outside the box for any new attack vectors as they appear in the wild.
The Cortex group specializes in analysis and visualization of complex cyber-data gathered by the company's products. It combines high-performance algorithms, deep understanding of modern databases, advanced visualization and high-end UI/UX.
Your Impact
Participate in meetings with stakeholders to provide balanced insights on feature requirements and security implications.
Act as a bridge between security, development, and operations teams to ensure security best practices are integrated into all phases of the development lifecycle.
Collaborate with cross-functional teams to develop pragmatic security solutions that do not hinder agility and innovation.
Work closely and in full coordination with multiple product engineering groups and DevOps teams to produce highly secure features
Handle, prioritize and effectively bring security vulnerabilities to resolution for multiple products
Build out security processes and perform threat modeling to all ongoing development and operations.
Helping guide new security initiatives in the product group and thinking outside the box for any new attack vectors as they appear in the wild.
The Cortex group specializes in analysis and visualization of complex cyber-data gathered by the company's products. It combines high-performance algorithms, deep understanding of modern databases, advanced visualization and high-end UI/UX.
Your Impact
Participate in meetings with stakeholders to provide balanced insights on feature requirements and security implications.
Act as a bridge between security, development, and operations teams to ensure security best practices are integrated into all phases of the development lifecycle.
Collaborate with cross-functional teams to develop pragmatic security solutions that do not hinder agility and innovation.
Work closely and in full coordination with multiple product engineering groups and DevOps teams to produce highly secure features
Handle, prioritize and effectively bring security vulnerabilities to resolution for multiple products
Build out security processes and perform threat modeling to all ongoing development and operations.
Requirements:
5+ years as a DevSecOps or Product Security Engineer with a passion for security and doing things right
Knowledge of container security and orchestration platforms (Docker, Kubernetes).
High proficiency in cloud security across the common platforms (AWS, GCP, Azure).
Solid experience with CI/CD tools (Jenkins, GitLab CI/CD, etc.).
Experience in reviewing architectures and identifying security gaps and provide recommendations
Experience in triaging vulnerabilities and providing security remediation recommendations.
Familiar with static and dynamic security analyzers
Experience helping engineering teams to focus high value security issues and avoid toil on non security issues
Effective communication and interpersonal skills, ability to work and coordinate between multiple teams.
5+ years as a DevSecOps or Product Security Engineer with a passion for security and doing things right
Knowledge of container security and orchestration platforms (Docker, Kubernetes).
High proficiency in cloud security across the common platforms (AWS, GCP, Azure).
Solid experience with CI/CD tools (Jenkins, GitLab CI/CD, etc.).
Experience in reviewing architectures and identifying security gaps and provide recommendations
Experience in triaging vulnerabilities and providing security remediation recommendations.
Familiar with static and dynamic security analyzers
Experience helping engineering teams to focus high value security issues and avoid toil on non security issues
Effective communication and interpersonal skills, ability to work and coordinate between multiple teams.
This position is open to all candidates.
