Software Security Engineer - DevSecops

Bengaluru, India (Office)

Applications have closed

Cohesity

Cohesity gives you both data security and data management. Defend against ransomware with immutable backup, AI-based early threat detection, and rapid data recovery.

View company page

Cohesity is on a mission to radically simplify how organizations manage their data to unlock limitless value. We make it easy to back up, manage and derive value from data while protecting data against ransomware attacks. At Cohesity, we’re encouraged to think big and we take on dynamic goals that require innovative thinkers. Obsession with our customers keeps us humble and drives us to keep learning.

We’ve been named a Leader by multiple analyst firms, and are prominently featured in the Forbes Cloud 100 and CRN’s Coolest Cloud companies.

About This Role:

We are actively seeking Security Engineers to join our team. As part of our Security Engineering team, you will be responsible for enabling Secure Product release at the speed of the development team. This responsibility is supported by integrating security testing with automated build and release pipelines, supporting security testing frameworks, integrating vulnerability management & tracking systems, secure configuration & artifact management services, and fast feedback systems. Whether it’s containers or VMs, we’re at the center of building and releasing code for our customers. The result is automated product security workflow for secure product release, fast time-to-market, and increased business value.

You will also ensure we’re in lock step with product engineering and develop our CICD enabled security services. Engaging with other teams and communicating with stakeholders will be a regular part of the job. We’re looking for an individual who’s motivated by technology, enjoys automation, and problem-solving.

Responsibilities

  • Integrate security tools within CI/CD pipelines, ensuring appropriate artifacts are created as evidence of good security practices
  • Automate security operations, including detection, alerting, and response capabilities
  • Work across the Development, Security, Site Reliability Engineering, and Infrastructure teams to ensure that the DevSecOps tools and processes are integrated early and are providing value
  • Identify and effectively communicate architectural vulnerabilities with supporting risk statements and realistic mitigation options to stakeholders.
  • Monitor security sources for vulnerability announcements and remediations, and create patches
  • Perform root cause analysis with IT customers
  • Coordinate features and deliverables across multiple teams to achieve project goals

Requirements

  • BS/MS/Ph.D. in Computer Science 
  • 5 years of relevant experience in securing applications, systems, networks and infrastructure.
  • Hands-on coding skills in at least one of the following languages: Python, Java, Golang
  • Solid experience with security tooling and best practices for implementation in development pipelines and infrastructure.
  • Experience with Application Security Testing, Penetration testing, Security event management, vulnerability management, threat modeling, and threat management systems 
  • In depth experience with configuring continuous integration software such as Jenkins, GitLab, CircleCi, etc.
  • Proficiency in Kubernetes, Docker, and/or other container technologies
  • You have strong grasp of the SDLC
  • Solid understanding of cloud computing - AWS, GCE, Azure, etc.
  • Knowledge in Storage, File systems, or Data Protection is a plus
  • Motivated to solve complex problems and challenges. 
  • And of course, a passion for security

 

#LI-KT1

Data Privacy Notice for Job Candidates:

For information on personal data processing, please see our Privacy Policy.

Equal Employment Opportunity Employer (EEOE)

Cohesity is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status or any other category protected by law. 

If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact us at 1-855-9COHESITY or talent@cohesity.com for assistance.

COVID-19

Cohesity requires all employees who enter its U.S. offices to be fully vaccinated against the COVID-19 virus and to provide documented proof thereof. Cohesity will comply with applicable law regarding the reasonable accommodation of individuals who are not vaccinated because of a sincerely held religious belief, disability or medical condition. This vaccination requirement does not apply to employees who work remotely and do not enter Cohesity offices.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Application security Automation AWS Azure CI/CD CircleCI Cloud Computer Science DevSecOps Docker Golang Java Kubernetes Pentesting Privacy Product security Python SDLC Vulnerabilities Vulnerability management

Perks/benefits: Career development

Region: Asia/Pacific
Country: India
Job stats:  10  3  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.