We are seeking an experienced Security Engineer to join our growing security team. This role involves strengthening cybersecurity across various stages of product development and collaborating with software development teams. Responsibilities include designing and implementing secure CI/CD pipelines, establishing security scanning tools (SAST, DAST), developing Policy as Code, and driving secure software development lifecycle processes. You will also define security requirements, conduct threat modeling, perform pre-production security assessments and penetration testing, and implement security best practices for Infrastructure as Code. The role also requires setting up security monitoring, log aggregation, and alerting systems, as well as performing vulnerability assessments.
Good To Have:- BS/MS in computer science
- Relevant security certifications (CISSP, CCSP, SSCP, CSSLP, CC, CISM, CEH, etc.)
- Experience in compliance management (ISO 27001, SOC2)
- Blue team experience (SOC operations, threat hunting)
- Experience in red-blue team exercises
- Experience in SSDLC process design and implementation
- Familiarity with security integration in agile development environments
- Strong English reading and communication skills
Must Have:- Minimum 3 years of cybersecurity experience, DevOps, or software development
- Knowledge of the SSDLC
- Extensive experience in software product engineering, deployment, and integration
- Ability to evaluate product performance metrics and resolve issues
- Ability to stay updated with technical product development advancements
- Exceptional communication and interpersonal skills