Engineer -Application and Product Security( Software Developer, Devops)
Location
Pune | India
Job description
Job Description
About Vertiv
Vertiv (NYSE: VRT) brings together hardware, software, analytics, and ongoing services to ensure its customers' vital applications run continuously, perform optimally, and grow with their business needs. Vertiv solves the most important challenges facing today's data centers, communication networks and commercial and industrial facilities with a portfolio of power, cooling and IT infrastructure solutions and services that extends from the cloud to the edge of the network. A $4.5B company, headquartered in Columbus, Ohio, USA, Vertiv employs approximately 24,000 people and does business in more than 130 countries.
Position Summary
The Engineer, Application and Product Security position's primary responsibility to support various development and operation activities. These activities include enhancing our internal security processes and tools utilized by our engineering teams, supporting code repository management, static and dynamic code analysis, and supporting engineering teams troubleshoot CI/CD pipelines. Secondary responsibilities include acting as the primary point of contact for regional engineering teams for our internal product security program, technical security resource for our vulnerability management program, support internal security team efforts, and mentor juniors within the team. The engineer is expected to have a thorough understanding of complex IT systems, embedded devices, applications, cloud systems and stay up to date with the latest security standards, systems, and authentication protocols, as well as best practices and emerging technologies. The ideal candidate will have knowledge of industry security frameworks such as OWASP SAMM and will be a strong communicator. They will be responsible for detecting product and application security threats as well as areas of weakness in products and applications for improvement.
This position will be primarily based out in Viman Nagar, Pune office will consistently work under the guidance and processes of global security team they will support regional as well as global engineering groups. The engineer will be expected to use their knowledge and experience to further develop internal secure processes and procedures.
Key Duties
In addition to anticipating possible security threats and identifying areas of weakness, the Product Security Engineer must:
- Act as a Security Engineer to work in development, operations activities daily
- Support building various tools, processes for the business and for engineering teams through various software development skills and coding practices (OOPS will be highly recommended)
- Code management and maintenance through DevOps and CI/CD pipelines
- Thorough Gitlab usage and maintenance for daily activities tracking, source code management, DevOps and CI/CD
- Support internal security team efforts, cross-functional activities
- Act as a primary point of contact for regional engineering teams for secure best practices and processes
- Thorough follow-up of internal product security program and vulnerability management processes
- Mentor juniors within the team and provide support
- Regional and Global support activities
Requirements :
- A bachelor's degree in information technology, Computer Science or related Engineering field is highly desirable.
- Total 7+ years of relevant experience in Software Development, Coding (especially OOPS, C++ etc.), DevOps and CI/CD
- Additional advanced security qualifications such as CISSP (Certified Information Systems Security Professional) certification, CEH (Certified Ethical Hacker) or equivalent are ideal.
- Good working knowledge of current Software Development environments, IT risks and experience implementing security solutions.
- Ability to interact with a broad cross-section of personnel to articulate and enforce security measures through internal product security program and vulnerability management processes
- Excellent written and verbal communication skills as well as business acumen
- Strong technical documentation, diagramming, and presentation skills
- Strong leadership, vision, effective communication and goal-oriented
- Strong ability to establish partnerships and influence change and achieve results within dynamic environment
- Meaningful technical contributions into the development lifecycle of a product, application and service
Preferred knowledge experience includes:
- Software Development experience in IT Applications, embedded systems / softwares and/or web-based applications that includes lab activities with and debugging on target hardware
- Experience using git and related source code management tools
- Experience with the Linux kernel and networking stack including security features
- Operating system configuration of Windows, Linux, Android, and iOS
- Computer boot process including boot loaders
- Familiarity with compilers, debuggers, disassemblers, and other low-level development and analysis tools
- Circumventing security protection methods and techniques
- Reverse engineering complex systems and protocols
Job tags
Salary