Who we want
Bazaarvoice is seeking a motivated Security Engineer who will be a key contributor on the Bazaarvoice Security team. We are looking for an individual who is passionate about security, loves to dig into root causes and is an agile thinker.
The Security Engineer is a hands-on role that requires a high degree of technical security expertise within a cloud ecosystem. Primary responsibilities include implementing security features and monitoring tools, performing periodic security assessments, making practical recommendations to reduce risks, and then helping to drive changes across the organization. The Security Engineer must have experience in prevention and remediation of security vulnerabilities.
Responsibilities:
Technologies We Use: The more of these you know, the better:
Security tools: WAF, SAST/DAST, DLP, IDS/IPS, IAM, Certificate Management, vulnerability scanners, AWS security tools
Environments: Linux, JVM, AWS
Languages: Ruby, Python, Perl, Java, Bash
Systems Operations: Puppet, AWS Cloudformation, Bash
Standards: HTML/CSS, JSON, REST, SAML, DRY, TDD, Agile
Tools: SVN/Git, Jenkins, JIRA, Confluence various monitoring tools
Essential Criteria:
BS or MS in computer science or related field.
4 years’ experience in DevOps environments and maintaining security in CI/CD processes.
4 years’ Experience with a broad range of security technologies & concepts.
4 years’ experience with the development, deployment, and automation of security solutions in an enterprise cloud based environment.
Demonstrated Experience with AWS
Good scripting skills in at least one of Ruby, Python, Perl, Java, Bash, or JavaScript
Experience with automated systems provisioning (puppet, chef, ansible or similar).
Highly self-motivated with the ability to identify areas of focus and tackle new challenges with or without direction.
Must be able to communicate effectively and build solid relationships with individuals at all levels, in multiple geographies and business functions.
Excellent oral and written communication skills and exceptional interpersonal skills.
Demonstrated ability to work under pressure.
Ability to work within a dynamic and fast paced international environment.
Desired Criteria:
Security Certifications like CISSP/SANS/OSCP.
Open source contributor.
Demonstrated innovative projects/solutions