Deep technical Knowledge of security engineering that align with security and privacy compliance requirements.
Expertise in secure code review.
Hands-on experience with Penetration testing.
4+ years of progressive security engineering experience across multiple domains, including but not limited to Security Architecture, Cryptography, Network Security, Cloud Security, Mobile Security, and Web Security.
Knowledge of system architecture and design.
Strong understanding of security controls at all levels of the OSI model associated with common technologies.
Experience in Secure Development Lifecycle (SDLC) and Shift Left practices, with a focus on Security by Design methodology.
Scripting or development skills in languages such as Python, C, C++, Java, Ruby, or PowerShell.
Responsibilities:
Identify security threats and vulnerabilities in applications and infrastructure and provide remediation mentorship to system owners.
Join forces with SRE and development teams to find new and creative ways to reduce the occurrence of vulnerabilities at scale.
Build repeatable and reusable security processes and frameworks.
Promote secure by design and secure by default development strategies.
Review quality issues and work to detect both obvious and subtle security flaws.
Collaborate in prioritizing potential projects, engaging in projects from initiation until completion by taking full ownership.
Use your proven experience to own and drive resolution and retesting of complex security events, policy questions, and technical security risks.