Application and Product Security Engineer (Development)
Westerville, OH, United States
Application and Product Security Engineer (Development) The Application and Product Security Engineer (Development) is expected to have a thorough understanding of various development environments and their respective toolchains. The center of our development processes and technology is built around GitLab. The environment and toolchain experience should span from basic DSP code development to complex cloud service deployments. This position is primarily responsible for designing, developing, and maintaining internal applications and integrations to support an automated security program. We are continuously improving automation and tool integrations to improve scalability and efficiency.
The Engineer will be involved in various development and operation activities. These activities include supporting our internally developed tools that help automate many of our day-to-day activities, enhancing our internal security processes and tools utilized by our engineering teams, supporting code repository management, static and dynamic code analysis, and helping engineering teams to troubleshoot CI/CD pipelines.
Secondary responsibilities include acting as the primary point of contact for regional engineering teams for our internal product security program and mentor juniors within the team. The engineer is expected to have a thorough understanding of complex IT systems, embedded devices, applications, cloud systems and stay up to date with the latest security standards, systems, and authentication protocols, as well as best practices and emerging technologies.
Responsibilities :
In addition to anticipating development needs and identifying areas of inefficiency, the Engineer must respond promptly and effectively to breakdowns in the toolchain supporting the development pipeline. Other key duties include:
Act as design authority for projects within the Application and Product Security portfolio. Engage from the idealization through the development lifecycle in project execution.
Understand, advocate, and support the enterprise's product strategy along with assisting in the development and implementation/realization of the various product roadmaps
Reviewing current system performance, efficiency, and security measures and recommending and implementing enhancements
Act as a Security Engineer to work in development, operations activities daily
Support building various tools, processes for the business and for engineering teams through various software development skills and coding practices (OOPS will be highly recommended)
Code management and maintenance through DevOps and CI/CD pipelines
Thorough Gitlab usage and maintenance for daily activities tracking, source code management, DevOps and CI/CD
Support internal security team efforts, cross-functional activities
Analyze the current portfolio to detect critical deficiencies and recommend solutions for improvement
Ability to work in global organization with onshore as well as offshore resources
Serve as an escalation point for security issues from development engineering teams
Support standard security testing labs
Support automated security testing
Mentor juniors within the team and provide support
Regional and Global support activities
Requirements :
Bachelor’s Degree in Computer Engineering, Information Technology, Computer Science or related field is highly desirable.
Five (5) years’ experience in development and deployment capacity for S/W or embedded firmware, with a focus on integrating development process and enhancing performance and reliability
Meaningful experience with GitLab
Technical contributor of source code in a development team to create a product or service
Solid understanding of development tools, processes, and best practices for a wide array of products. Embedded firmware to complex cloud deployments
Ability to interact with a broad cross-section of personnel to articulate and enforce best development process security measures
Excellent written and verbal communication skills as well as business acumen
Strong ability to establish good working relationships to influence change and achieve results within dynamic environment
Preferred Knowledge Experience Includes: Lengthy experience utilizing git, svn, cvs, and other SCM solutions
Deployment and usage of Docker, Kubernetes and/or Tanzu technologies
Certifications/accreditations relating to development processes and methodologies preferred
Development experience in embedded systems and/or web-based applications
Conducting research for the purposes of understanding new tools and methodologies to support a continuously evolving DevSecOps environment
Linux kernel build configuration and integration experience
Linux network device driver/data-path performance experience
Experience in object oriented programming. Preferably Python but experience with C, C++, Java, .NET, and Go also beneficial.
The successful candidate will embrace Vertiv’s Core Principals & Behaviors to help execute our Strategic Priorities.
OUR CORE PRINCIPALS : Safety. Integrity. Respect. Teamwork. Diversity & Inclusion.
OUR STRATEGIC PRIORITIES
• Financial Strength
OUR BEHAVIORS
• Think Big and Execute
• Lead by Example
• Learn and Seek Out Development
About Vertiv
Vertiv is a $6.8billion global critical infrastructure and data center technology company. We ensure customers’ vital applications run continuously by bringing together hardware, software, analytics and ongoing services. Our portfolio includes power, cooling and IT infrastructure solutions and services that extends from the cloud to the edge of the network. Headquartered in Columbus, Ohio, USA, Vertiv employs around 20,000 people and does business in more than 130 countries. Visit Vertiv.com to learn more.
Work Authorization
No calls or agencies please. Vertiv will only employ those who are legally authorized to work in the United States. This is not a position for which sponsorship will be provided. Individuals with temporary visas such as E, F-1, H-1, H-2, L, B, J, or TN or who need sponsorship for work authorization now or in the future, are not eligible for hire.
Equal Opportunity Employer
Vertiv is an Equal Opportunity/Affirmative Action employer. We promote equal opportunities for all with respect to hiring, terms of employment, mobility, training, compensation, and occupational health, without discrimination as to age, race, color, religion, creed, sex, pregnancy status (including childbirth, breastfeeding, or related medical conditions), marital status, sexual orientation, gender identity / expression (including transgender status or sexual stereotypes), genetic information, citizenship status, national origin, protected veteran status, political affiliation, or disability. If you have a disability and are having difficulty accessing or using this website to apply for a position, you can request help by sending an email to [email protected].
Explore more InfoSec / Cybersecurity career opportunities Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
#J-18808-Ljbffr