Offer summary

Qualifications:

Experience with cloud security principles, preferably AWS or Google Cloud Platform., Proficiency in programming and scripting, especially Python, for automation., Knowledge of security tools like SAST, DAST, SCA, and vulnerability scanners., Understanding of container security, Infrastructure as Code (IaC), and DevOps methodologies..

Key responsibilities:

Integrate and automate security controls throughout the software development lifecycle.

Develop security tooling and scripts to automate security operations.

Collaborate with teams to design and secure cloud-native infrastructure.

Conduct threat modeling, risk assessments, and vulnerability analysis.

Job description

Bitsight is a cyber risk management leader transforming how companies manage exposure, performance, and risk for themselves and their third parties. Companies rely on Bitsight to prioritize their cybersecurity investments, build greater trust within their ecosystem, and reduce their chances of financial loss.
Built on over a decade of technological innovation, its integrated solutions deliver value across enterprise security performance, digital supply chains, cyber insurance, and data analysis.

We invented the cyber ratings industry in 2011
Over 3000 customers trust Bitsight
Over 750 teammates are dispersed throughout Boston, Raleigh, New York, Lisbon, Singapore, and remote

We're looking for a Security Engineer to join our core Engineering team. In this role, you'll be a hands-on builder, responsible for the security of our product, cloud infrastructure, and software development lifecycle. You'll drive end-to-end projects, from integrating security automation into our CI/CD pipelines to architecting security controls for our platform. We're looking for someone who thrives in an open DevOps culture and wants to contribute innovative solutions that enable our engineers to build and ship secure products quickly and safely.

Responsibilities

Integrate and automate security controls throughout the entire software development lifecycle (SDLC), including CI/CD pipelines.
Develop and maintain security tooling and scripts to automate repetitive tasks and security operations.
Collaborate with platform and engineering teams to design, implement, and secure cloud-native infrastructure using Infrastructure as Code (IaC).
Drive the "shift-left" security strategy by embedding security best practices and tools directly into developer workflows.
Design and architect security solutions that scale with our product and platform, covering areas like secrets management, identity and access management (IAM), and runtime security.
Conduct threat modeling, risk assessments, and vulnerability analysis on our products and infrastructure.

Requirements

Hands-on experience with cloud security principles and best practices, preferably with AWS or Google Cloud Platform.
Experience with designing and implementing security solutions in a cloud-native environment.
Strong programming and scripting skills (Python preferred) to build security automation and tooling.
Experience with modern security tools such as SAST, DAST, SCA, and vulnerability scanners integrated into CI/CD.
Knowledge of container and orchestrator security (e.g., Kubernetes).
Familiarity with Infrastructure as Code (IaC) tools like Terraform or CloudFormation.
Strong understanding of DevOps methodologies and how to embed security into the development workflow.
Experience with threat modeling, penetration testing, or bug bounty programs.

Belonging & Inclusion. Bitsight is proud to be an equal opportunity employer. This means we do not tolerate discrimination of any kind and are committed to providing equal employment opportunities regardless of your gender identity, race, nationality, religion, sexual orientation, status as a protected veteran, or status as an individual with a disability.

Culture. We put our people first. Bitsight offers best in class benefits. We devote the same energy to nurturing our company's inclusive culture as we apply to serving our customers' needs. Working at Bitsight will give you the opportunity to fulfill your professional goals and expand your skills.

Open-minded. If you got to this point, we hope you’re feeling excited about the job description you just read. Even if you don’t feel that you meet every single requirement, we still encourage you to apply. We’re eager to meet people that believe in Bitsight’s mission and can contribute to our team in a variety of ways.

Bitsight also provides reasonable accommodations to qualified individuals with disabilities or based on a sincerely held religious belief in accordance with applicable laws. If you need to inquire about a reasonable accommodation, or need assistance with completing the application process, please email recruiting@bitsight.com. This contact information is for accommodation requests only, and cannot be used to inquire about the status of applications.

Additional Information for United States of America Applicants:

Bitsight is committed to compliance with all fair employment practices regarding citizenship and immigration status.

Bitsight will not discharge, discipline or in any other manner discriminate against any employee or applicant for employment because such employee or applicant has inquired about, discussed, or disclosed the compensation of the employee or applicant or another employee or applicant.

Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Qualified applicants with criminal histories will be considered for employment consistent with applicable law.

This position may be considered a promotional opportunity pursuant to the Colorado Equal Pay for Equal Work Act.

Required profile