Dev Security Ops

We are seeking an experienced Security Engineer to join our team. The ideal candidate will have a strong background in web security, threat modeling, and cloud infrastructure, with deep knowledge of both Linux systems and AWS networking. You will be responsible for securing our applications, monitoring open-source dependencies, and implementing container and API security measures.

Key Responsibilities:

• Plan, implement, and maintain security monitoring tools and services to protect web applications.
  
• Regularly analyze security data to identify and address potential areas for optimization and improvement.
  
• Perform regular API endpoint tests to ensure data protection and secure communication between systems.
  
• Plan and implement container scanning tools to detect vulnerabilities in containerized applications.
  
• Emulate threat actors and simulate attacks to identify potential weaknesses and improve security posture.
  
• Monitor the use of open-source software across projects and detect license violations, security vulnerabilities, and potential risks.
  
• Work closely with development teams to ensure compliance with security best practices.
  
• Apply deep knowledge of Linux systems for server-side security hardening and performance optimization.
  
• Utilize your understanding of AWS networking and Identity Access Management (IAM) to secure cloud-based infrastructure.
  
• Maintain a strong focus on both client-side and server-side web security, ensuring that applications are secure from end to end.
  

Requirements

Technical Skills & Experience Required:

• Proven experience in planning and implementing security tools and services.
  
• Strong ability to analyze data for system optimization and security enhancement.
  
• Hands-on experience with API security testing and endpoint validation.
  
• Proficiency in container scanning tools and methods to secure containerized environments.
  
• Experience with security testing methodologies, including emulating attacker methods to identify vulnerabilities.
  
• Expertise in monitoring open-source software usage for license compliance and security threats.
  
• Deep knowledge and experience working with Linux systems, particularly in a security context.
  
• Solid understanding of AWS networking, IAM, and cloud infrastructure security.
  
• Extensive knowledge of web security best practices, both for client-side and server-side applications.
  

Preferred Qualifications:

• Experience with additional AWS security services such as AWS Shield, GuardDuty, and Security Hub.
  
• Familiarity with DevSecOps practices and security automation.
  
• Knowledge of vulnerability management tools and techniques.
  

Benefits

• More than just a market leading salary – we provide a range of benefits including HMO, performance awards, yearly appraisals, signing and performance bonuses
  
• Your voice will be heard - you are part of a small collaborative team where your ideas will have an impact.
  
• A chance to work with the best international brands from the US, Canada, Mexico, Australia, Singapore, and many more.
  
• Hybrid/Work from home - we're working remotely but still find ways to build teams during the pandemic with monthly team building and treats.
  
• Opportunity to travel – we have regularly sent our staff to work directly with our clients and this will continue post-Covid. In fact, we have supported our staff for long term assignments or permanent migrations in the US, Mexico, and Australia.
  
• We've got your back - you're part of a company that will invest in your career progression, training and development.
  
• Sponsored AWS and .Net/Azure Certifications
  
• Learning and development opportunities – both on the job and classroom style training
  
• Genuine Career opportunities / Opportunities to advance – we want to progress our own people
  
• PTO / paid holidays
  
• Extra leave awarded after your first year of service
  
• Laptop (fully expensed)