Jobs

Job Details

Location

Belfast, Northern Ireland

Posted

Nov 8, 2017

Closing Date

Dec 30, 2017

Share

Senior Security Engineer

  • Who we want

     

    Bazaarvoice is seeking a motivated Security Engineer who will be a key contributor on the Bazaarvoice Security team. We are looking for an individual who is passionate about security, loves to dig into root causes and is an agile thinker.

     The Security Engineer is a hands-on role that requires a high degree of technical security expertise within a cloud ecosystem. Primary responsibilities include implementing security features and monitoring tools, performing periodic security assessments, making practical recommendations to reduce risks, and then helping to drive changes across the organization. The Security Engineer must have experience in prevention and remediation of security vulnerabilities.

     

    Responsibilities:

    • Build integration and automation tools for security processes.

     

    • Manage and operate a variety of security tools such as vulnerability and application testing, cloud auditing, intrusion detection, pen testing tools, etc.

     

    • Document security standards and procedures for engineering teams.

     

    • Collaborate with the Cloud Platform team to build infrastructure and servers on AWS.

     

    • Lead application security assessments.

     

    • Mentor and lead security awareness initiatives.

     

    • Investigate and resolve security violations by providing postmortem analysis to illuminate the issue, identify causes, possible solutions, and preventative measures.

     

    • Create security focused dashboards to provide high value insights.

     

    • Work with the Bazaarvoice clients and Privacy teams during audits and examinations.

     

    • Embrace a culture of continuous service improvement and service excellence.

     

    • Stay current on security industry trends.

     

     

    Technologies We Use: The more of these you know, the better:

    Security tools: WAF, SAST/DAST, DLP, IDS/IPS, IAM, Certificate Management, vulnerability scanners, AWS security tools

    Environments: Linux, JVM, AWS

    Languages: Ruby, Python, Perl, Java, Bash

     

    Systems Operations: Puppet, AWS Cloudformation, Bash

    Standards: HTML/CSS, JSON, REST, SAML, DRY, TDD, Agile

    Tools: SVN/Git, Jenkins, JIRA, Confluence various monitoring tools

     

    Essential Criteria:

    BS or MS in computer science or related field.

    4 years’ experience in DevOps environments and maintaining security in CI/CD processes.

    4 years’ Experience with a broad range of security technologies & concepts.

    4 years’ experience with the development, deployment, and automation of security solutions in an enterprise cloud based environment.

    Demonstrated Experience with AWS

    Good scripting skills in at least one of Ruby, Python, Perl, Java, Bash, or JavaScript

    Experience with automated systems provisioning (puppet, chef, ansible or similar).

    Highly self-motivated with the ability to identify areas of focus and tackle new challenges with or without direction.

    Must be able to communicate effectively and build solid relationships with individuals at all levels, in multiple geographies and business functions.

    Excellent oral and written communication skills and exceptional interpersonal skills.

    Demonstrated ability to work under pressure.

    Ability to work within a dynamic and fast paced international environment.

     

    Desired Criteria:

    Security Certifications like CISSP/SANS/OSCP.

    Open source contributor.

    Demonstrated innovative projects/solutions