Work with a team of security engineers to deliver on organizational related to threat modeling, DevSecOps pipelines, and penetration testing activities.
Implement DevSecOps practices, enabling seamless integration of security into CI/CD pipelines and infrastructure-as-code strategies.
Build and implement new security controls, processes and tools.
Identify organizational risks to confidentiality, integrity, and availability, and determine appropriate mitigations.
Leverage native Azure, GCP, and AWS cloud services to automate and improve existing security and control activities.
Develop or implement open-source/third-party tools to assist in detection, prevention, and analysis of security threats.
Perform technical security assessments against product and enterprise cloud hosted, virtual, and on-premise systems including static and dynamic analysis, and threat modeling.
Review and test changes to services, applications, and networks for potential security impacts.
Configure industry standard security testing/scanning tools (code scanning, posture management).

B.S. or M.S. in Computer Science, Engineering, or related field, or equivalent experience.
3+ years of relevant security and networking experience
2-4 years of relevant security engineering experience
Familiarity with scripting languages (e.g., Go, Python, Ruby, Rust, etc.)
Experience automating security testing and reporting outputs
Technical knowledge and hands-on experience with security and networking security, basic networking protocols, cloud security, network security design, intrusion prevention/detection, and firewall architecture
Experience assessing and implementing technical security controls.
Strong written and verbal communication skills.

Security Engineer III

Key skills