Software Security Engineer - DevSecops
Bengaluru, India (Office)
Cohesity
Cohesity gives you both data security and data management. Defend against ransomware with immutable backup, AI-based early threat detection, and rapid data recovery.Cohesity is on a mission to radically simplify how organizations manage their data to unlock limitless value. We make it easy to back up, manage and derive value from data while protecting data against ransomware attacks. At Cohesity, we’re encouraged to think big and we take on dynamic goals that require innovative thinkers. Obsession with our customers keeps us humble and drives us to keep learning.
We’ve been named a Leader by multiple analyst firms, and are prominently featured in the Forbes Cloud 100 and CRN’s Coolest Cloud companies.
About This Role:
We are actively seeking Security Engineers to join our team. As part of our Security Engineering team, you will be responsible for enabling Secure Product release at the speed of the development team. This responsibility is supported by integrating security testing with automated build and release pipelines, supporting security testing frameworks, integrating vulnerability management & tracking systems, secure configuration & artifact management services, and fast feedback systems. Whether it’s containers or VMs, we’re at the center of building and releasing code for our customers. The result is automated product security workflow for secure product release, fast time-to-market, and increased business value.
You will also ensure we’re in lock step with product engineering and develop our CICD enabled security services. Engaging with other teams and communicating with stakeholders will be a regular part of the job. We’re looking for an individual who’s motivated by technology, enjoys automation, and problem-solving.
Responsibilities
- Integrate security tools within CI/CD pipelines, ensuring appropriate artifacts are created as evidence of good security practices
- Automate security operations, including detection, alerting, and response capabilities
- Work across the Development, Security, Site Reliability Engineering, and Infrastructure teams to ensure that the DevSecOps tools and processes are integrated early and are providing value
- Identify and effectively communicate architectural vulnerabilities with supporting risk statements and realistic mitigation options to stakeholders.
- Monitor security sources for vulnerability announcements and remediations, and create patches
- Perform root cause analysis with IT customers
- Coordinate features and deliverables across multiple teams to achieve project goals
Requirements
- BS/MS/Ph.D. in Computer Science
- 5 years of relevant experience in securing applications, systems, networks and infrastructure.
- Hands-on coding skills in at least one of the following languages: Python, Java, Golang
- Solid experience with security tooling and best practices for implementation in development pipelines and infrastructure.
- Experience with Application Security Testing, Penetration testing, Security event management, vulnerability management, threat modeling, and threat management systems
- In depth experience with configuring continuous integration software such as Jenkins, GitLab, CircleCi, etc.
- Proficiency in Kubernetes, Docker, and/or other container technologies
- You have strong grasp of the SDLC
- Solid understanding of cloud computing - AWS, GCE, Azure, etc.
- Knowledge in Storage, File systems, or Data Protection is a plus
- Motivated to solve complex problems and challenges.
- And of course, a passion for security
#LI-KT1
Data Privacy Notice for Job Candidates:
For information on personal data processing, please see our Privacy Policy.
Equal Employment Opportunity Employer (EEOE)
Cohesity is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status or any other category protected by law.
If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact us at 1-855-9COHESITY or talent@cohesity.com for assistance.
COVID-19
Cohesity requires all employees who enter its U.S. offices to be fully vaccinated against the COVID-19 virus and to provide documented proof thereof. Cohesity will comply with applicable law regarding the reasonable accommodation of individuals who are not vaccinated because of a sincerely held religious belief, disability or medical condition. This vaccination requirement does not apply to employees who work remotely and do not enter Cohesity offices.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation AWS Azure CI/CD CircleCI Cloud Computer Science DevSecOps Docker Golang Java Kubernetes Pentesting Privacy Product security Python SDLC Vulnerabilities Vulnerability management
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Security Operations Engineer jobs
- Open Senior Security Analyst jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs