Security Officer responsible for ensuring safety and security at the Genesee Brewing Company. Monitoring premises, responding to emergencies, and providing visitor assistance during shifts.
About the role
- DevSecOps engineer at Ford ensuring secure software development and compliance with security standards. Collaborating with teams to embed security practices and assess vulnerabilities in software delivery.
Responsibilities
- Perform security-focused code reviews.
- Assist teams in reproducing, triaging, and addressing application security vulnerabilities.
- Knowledge of Risk mitigation techniques and fixing the code bugs.
- Monitoring the processes during the entire lifecycle for its adherence and updating or creating new processes for improvement.
- Support and consult with product and development teams in the area of application security.
- Identifying and deploying cybersecurity measures by continuously performing vulnerability assessment and risk management.
- Providing security training and outreach to internal development teams.
- Mentoring, guiding team members and customers.
- Monitoring, measuring customer experience and KPIs.
- Use security tools for identifying and mitigating vulnerabilities.
- Able to work well with software development teams.
- Experience identifying security issues through code review.
- Familiarity with some common security libraries and tools (e.g. static analysis tools).
- Familiarity and ability to explain common security flaws and ways to address them (e.g. OWASP Top 10).
- Experience in integrating, monitoring and improving DevSecOps tools and processes, automate routine tasks and improve system reliability.
- Development or scripting experience and skills (preferable Python knowledge).
- Designing and implementing Zero Trust Security model, automated enforcement, and monitoring of security controls, vulnerability management, code-based compliance and gate reviews, platform-based security controls and guardrails.
Requirements
- Bachelor (undergraduate) degree in a relevant field (Computer Science, Software Engineer, Security, or others) OR an equivalent combination of education, training, and experience.
- Minimum of 5 years of professional experience with any combination of at least 2 technical disciplines, including the following: DevSecOps, cloud security, network security, application security, mobile security, secure development methodologies, software development and coding, identity management, authentication and authorization, network architecture, system administration, and systems engineering.
- Desirable Certified DevSecOps Professional (CDP), Certified Kubernetes Administrator (CKA) or Certified Kubernetes Security (CKS) and HashiCorp Certified: Terraform Associate.
Benefits
- Healthcare insurance
- Retirement plans
- Flexible work arrangements
- Professional development opportunities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Estimator creating estimates and proposals for security projects at LINX. Collaborating with engineering and sales teams for system design and client relationships.
Product Security Architect at Expedia designing secure architecture for services and APIs. Collaborating with teams to guide secure practices and integrate AI - driven solutions.
IT Security Officer overseeing information security for a specific IT sector at Desjardins. Collaborating with cross - sector teams and managing information security risks and vulnerabilities.
Associate, Information Security professional at Santander focusing on Vulnerability Management and network security exposure. Collaborating with teams to enhance security posture and manage technology risks.
IAM Security & Technology Governance person driving IAM technical program with cutting - edge technology to improve security posture at MUFG. Manage IAM requirements, standards, governance and solutions across global implementation.
Senior Analyst in Mastercard's newly created Vocalink Control Office supporting control testing across Security domains. Ensuring a strong control environment and identifying gaps for improvement.
Senior Analyst focusing on Information Security and Compliance at Cirque du Soleil. Engaging in threat analysis and improvement of security tools and processes, within a creative company culture.
Security Architect designing and implementing cybersecurity architectures for UK Defence projects. Collaborating with stakeholders to safeguard client data against cyber threats.
System Security Specialist analyzing risks and security controls for state agencies. Conducting assessments, providing advisory support, and strengthening cybersecurity posture.