Security Engineer
Listed on 2026-02-28
-
IT/Tech
Cybersecurity, Systems Engineer, Security Manager
Role Summary
Operationalize Dev Sec Ops security controls across SDLC and CI/CD using Azure Dev Ops Server, ensuring enforceable security gates, vulnerability lifecycle management, and audit-ready evidence.
Key Responsibilities- Configure and tune Fortify SAST/DAST, define thresholds and exception workflow.
- Automate the renewal and deployment of SSL/TLS certificates using tools like Hashi Corp Vault and Cert-Manager in Kubernetes to prevent downtime and security risks.
- Integrate SBOM generation tools into the CI/CD pipeline to track component dependencies, license compliance, and vulnerabilities, providing visibility into the software supply chain.
- Implement image signing and verification using tools like Sigstore/Cosign to ensure code integrity, ensuring only verified, trusted container images are deployed.
- Define Quality Gates, vulnerability SLAs, triage process, remediation tracking and reporting dashboards.
- Integrate secrets management (Hashi Corp Vault) and secure access patterns with Secur Envoy MFA.
- Support compliance evidence: scan outputs, approvals, and release evidence packs.
Partner with Dev Ops and QA on secure pipelines and test environment controls.
Requirements Required Experience5–8+ years App Sec/Dev Sec Ops /security engineering experience. Government/regulatory sector experience is a plus. Strong OWASP, threat modeling, and vulnerability management exposure.
Technical SkillsSecure SDLC, CI/CD security gates, artifact trust, secrets management, container security concepts, and K8s security basics.
Soft SkillsInfluence without authority, risk-based communication, pragmatic guidance, and calm escalation handling.
Core Skills / ToolingAzure Dev Ops Server, Fortify (SAST/DAST), Hashi Corp Vault, JFrog Artifactory, Sigstore (plus), Open Shift/Kubernetes awareness, and monitoring correlation (App Dynamics/BMC/Azure Monitoring).
#J-18808-Ljbffr(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).