Job Summary:

• Define, plan and oversee security initiatives and processes
• Lead, motivate, and inspire both your fellow Engineering Organization to drive toward the SecOps vision
• Triage security issues found and allocated to the right functions to address them
• Build and manage tooling to improve our security
• Implement security fixes on both infrastructure and Application
• Build and manage strong relationships with Product and Engineering leaders across the organization
• Build awareness and support for security to build SecOps into the cultural fabric of the organization
• Collaborate with peers to creatively solve problems and drive department-wide objectives
• Work closely with the InfoSec team to support internal and external security audits, penetration testing and certification processes
• Staying up-to-date on current software development technologies and security controls
• Embrace a culture of continuous service improvement and service excellence
• Collaborate with engineering teams to provide feedback on products and development environments.

Skills on Resume:

• Security Management (Hard Skills)
• Leadership and Motivation (Soft Skills)
• Issue Triage and Resolution (Hard Skills)
• Tooling Development and Management (Hard Skills)
• Technical Proficiency (Hard Skills)
• Stakeholder Relationship Management (Soft Skills)
• Security Awareness and Culture Building (Soft Skills)
• Collaborative Problem Solving (Soft Skills)

Job Summary:

• Ensure technical security controls are implemented
• Participate in security reviews of varying scale and depth
• Threat modeling, design review, consultation, code review to improve the overall security of our applications.
• Work closely with developers to diagnose, document and remediate security vulnerabilities.
• Improve security posture of products through the explanation of facts, policies and practices.
• Championing security with the developers as part of BAU engagements.
• Work collaboratively with our key stakeholders, and also independently.
• Perform application threat analysis (both manually and automatically)
• Influence clients apps and architecture towards best security practices
• Guide and implement DevSecOps tools (SAST, DAST, SCA and etc) for clients
• Perform security code reviews (manually) or to assist with identify of false findings
• Take part in penetration testing activities
• Keep up-to-date knowledge for security market and potential threats
• Examine output from security tools and software and report on findings.

Skills on Resume:

• Technical Security Implementation (Hard Skills)
• Security Review Participation (Hard Skills)
• Vulnerability Remediation (Hard Skills)
• Security Posture Improvement (Soft Skills)
• Security Advocacy (Soft Skills)
• Collaboration (Soft Skills)
• Threat Analysis (Hard Skills)
• DevSecOps Implementation (Hard Skills)

Job Summary:

• Partner with engineering and product teams in the design phase of product and features
• Performing threat modeling and security architecture and design reviews.
• Conduct ongoing network and application penetration testing
• Tracking vulnerabilities and partnering with engineering and product to remediate vulnerabilities according to Mosaic policies.
• Lead security projects including the implementation and configuration of security tools and automation for ongoing testing
• Deliver security training to internal development teams
• Evaluate data management, data quality and data access processes for gaps, inefficiencies and opportunities
• Work and remediate bugs with affected application and infrastructure teams.
• Advise and consult internal customers on risk assessment, incident triage, threat modeling, and security vulnerability mitigation.
• Mentor developers on evolving threats to their applications and help to insure state-of-the-art secure development practices are being used.
• Perform code reviews of security-critical code.
• Research and analyze potential new threats, attack vectors and risks and identify mitigation efforts.

Skills on Resume:

• Security Architecture and Design (Hard Skills)
• Penetration Testing (Hard Skills)
• Vulnerability Management (Hard Skills)
• Security Project Management (Hard Skills)
• Security Training Delivery (Soft Skills)
• Data Management and Access Control (Hard Skills)
• Incident Response and Bug Remediation (Soft Skills)
• Threat Intelligence and Research (Hard Skills)

Job Summary:

• Conduct application security reviews for our services and applications
• Perform penetration testing for critical services and applications
• Perform security code reviews for critical changes during the development phase
• Deliver security training and outreach to internal development teams
• Develop security best practices documentation internal security applications
• Develop automation to streamline common tasks, tests, workflows, etc.
• Training and mentoring DevOps and Developer teams on application security best practices
• Actively promote security culture and education within the organization
• Build tools to automate security checks across Adobe Products and IT workflows.
• Perform security testing for new and existing features across web, mobile and desktop products.
• Enumerate security risks and controls to mitigate them.
• Research new technologies and present security best practices to product teams.
• Guide teams on adoption and execution of a Secure Product Life Cycle.

Skills on Resume:

• Application Security Review (Hard Skills)
• Penetration Testing (Hard Skills)
• Security Code Review (Hard Skills)
• Security Training and Outreach (Soft Skills)
• Documentation Development (Hard Skills)
• Application Development for Security (Hard Skills)
• Automation Development (Hard Skills)
• Mentoring and Training (Soft Skills)

Job Summary:

• Participate in building better, more robust, and automated processes for the Technology Services department
• Occasionally serve as Tier 2 support for security tools support and troubleshooting
• Become a subject matter expert on company systems to enhance and mature the capabilities that the Information Security team has into the environment
• Front line support for the Information Security intake process
• Participate in providing best in class security recommendations in conjunction with Security
• Architecture and ratification of systems to comply with a security policy and/or standard/s
• Risk ranking information security risks and triaging tasks.
• Participate in Company's project life cycle business process for escalation to security architecture
• Participate in Company's Security program vulnerability management program
• Security tool evaluation, recommendation, and maintenance
• Develop and optimize the security tools used throughout the platform infrastructure and contribute to the overall security strategy across the organization.

Skills on Resume:

• Technical Proficiency (Hard Skills)
• Problem-solving Abilities (Soft Skills)
• Subject Matter Expertise (Hard Skills)
• Communication Skills (Soft Skills)
• Risk Assessment (Hard Skills)
• Project Management Skills (Soft Skills)
• Security Compliance Knowledge (Hard Skills)
• Security Tool Evaluation and Optimization (Hard Skills)

Job Summary:

• Help building robust and scalable web applications
• Advise on the secure design of applications and services and participate in threat modeling
• Validate, track, and prioritize security issues
• Design and build internal security tools that help fix security problems
• Participate in security incident response and help improve our SIEM tools
• Provide subject matter expertise on cloud security, application-level security controls, and safe programming practices
• Promote security knowledge across development teams and inspire our security champions
• Identify security issues and risks, and develop mitigation plans. 
• Design, implement, support and evaluate security-focused tolls and services including project leadership. 
• Develop and interpret security policies and procedures. 
• Participate in security compliance efforts. 
• Develop and deliver recommended new and emergency security products and technologies.

Skills on Resume:

• Web Application Development (Hard Skills)
• Security Advising and Threat Modeling (Hard Skills)
• Security Issue Management (Hard Skills)
• Security Incident Response (Hard Skills)
• Cloud Security Expertise (Hard Skills)
• Security Knowledge Promotion (Soft Skills)
• Risk Identification and Mitigation (Hard Skills)
• Security Policy Development and Compliance (Hard Skills)

Job Summary:

• Architect, design and implement security controls for maintaining a secure ecosystem built in alignment with a zero-trust architecture
• Stay current with solutions in the market, recommend improvements and solutions to existing posture
• Assist with the documentation and maintenance of designs for security systems and controls
• Assist in incident response, breach analysis and tabletop exercises
• Work closely with product development, platform, and IT teams on various architectural and design aspects of product and internal security
• Maintain strong knowledge of ongoing security threats and recommended best practices
• Conduct security readiness assessments, application pen tests, and analysis of findings
• Collaborate with compliance and technology teams to build actionable functional and technical requirements
• Be responsible for the development of documentation (written and video) for AppSec products used within Trimble.
• Work with teams to identify and close gaps in application security applications and their products.
• Help to establish and communicate best practices involving implementation of technologies and AppSec solutions.
• Work with multiple diverse teams spread throughout the world, as such the candidate should be comfortable in a business meeting or virtual meeting setting.

Skills on Resume:

• Security Architecture (Hard Skills)
• Market Awareness (Hard Skills)
• Documentation (Hard Skills)
• Incident Response (Hard Skills)
• Collaboration (Soft Skills)
• Threat Awareness (Hard Skills)
• Penetration Testing (Hard Skills)
• Compliance Building (Hard Skills)

Job Summary:

• Work with the security team to ensure the security of in-house developed applications and COTS systems
• Perform analysis, investigation, and remediation of applications and systems partnering with vendors
• Work with the security team to ensure superior OS hardening and other security configuration best practices.
• Provide security assistance to the security and infrastructure team on projects and system architecture.
• Perform behavioral analysis and review of application logs, alerts, and other security information in order to detect potentially malicious events.
• Provide expertise for secure application development practices
• Manage InfoSec development, testing and QA functions to ensure that projects are securely delivered and fulfill security requirements
• Evaluate, test, and recommend new application and coding security techniques and strategies
• Evaluate and recommend new and emerging security products and technologies
• Oversee the code vulnerability scans and applications patching process, to ensure that SLAs around time to remediation are being met.
• Review vendor or third-party security processes.
• Review and recommend Cloud and SaaS solutions from an API security perspective

Skills on Resume:

• Application Security Analysis (Hard Skills)
• Vendor Partnership and Management (Soft Skills)
• Operating System Hardening (Hard Skills)
• Security Architecture Knowledge (Hard Skills)
• Behavioral Analysis and Log Review (Hard Skills)
• Secure Application Development Practices (Hard Skills)
• InfoSec Management and Quality Assurance (Soft Skills)
• Research and Evaluation of Security Technologies (Hard Skills)

Job Summary:

• Participating in security design discussions, providing technical engineering and operational guidance to developers and internal customers
• Completing review and improvements for security standards, preferred implementation patterns, secure common frameworks, and developer documentation and education materials
• Providing advice on recommended remediations and educating developers on how to build more secure software
• Identifying emerging trends in the industry and establishing strategic guidance related to best practice approaches to address those trends
• Define and embed technical security policies, principles and standards. 
• Use code analysis solutions to evolve the secure-by-design principle.
• Develop, maintain and automate security tools for secure SDLC, including ongoing developer training
• Maintaining good practice around code repos (like Git), identifying and remediating weaknesses in Open Source libraries
• Lambda (server-less functions), leading and delivering key projects
• Provide advice to development teams on all aspects of security within the development lifecycle
• Proactively identify vulnerabilities, provide solutions and drive remediation (ideally through automation runbooks)
• Work closely with platform teams to build centralized security reporting dashboards that provide security assurance across our applications
• Automate the identification and remediation of security issues across Cloud services and build smart real-time reporting dashboards.

Skills on Resume:

• Security Design Expertise (Hard Skills)
• Security Standards Review and Improvement (Hard Skills)
• Remediation Advisory (Soft Skills)
• Industry Trends Awareness (Soft Skills)
• Policy Development (Hard Skills)
• Code Analysis (Hard Skills)
• Security Tool Development and Automation (Hard Skills)
• Vulnerability Identification and Remediation (Hard Skills)

Job Summary:

• Cultural alignment through listening and communication skills.
• Develop relationships across internal product, engineering and technical organizations.
• Stay up to date with the latest vulnerabilities, exploits, security trends and general changes in technology to provide guidance on how these affect the security of business.
• Threat modeling, architecture and design reviews on services and applications as required.
• Help other departments to build security into their workflow.
• Mentor and cross train other Security Engineers across the division.
• Evaluate and promote new and existing security standards, solutions and tools.
• Implement technical solutions in line with Coterie’s cybersecurity strategic plans.
• Analyze threats and vulnerabilities to determine security impact
• Assess the security of core platform infrastructure
• Build technologies to detect and prevent security vulnerabilities
• Help development teams build security into the Workday platform by performing threat modeling, architecture reviews and code reviews
• Impact the product design by providing secure design patterns
• Provide recommendations for hardening applications and environments
• Perform Web Application penetration testing

Skills on Resume:

• Communication and Listening Skills (Soft Skills)
• Relationship Building (Soft Skills)
• Knowledge of Security Trends (Hard Skills)
• Threat Modeling and Design Review (Hard Skills)
• Integration of Security into Workflow (Soft Skills)
• Mentoring and Cross-Training (Soft Skills)
• Evaluation and Promotion of Security Solutions (Hard Skills)
• Technical Implementation and Analysis (Hard Skills)

Job Summary:

• Facilitate efforts in Engineering Teams to perform and maintain threat models and provide coaching and guidance to Engineers
• Use knowledge of common risk of risks and vulnerabilities to guide Engineering teams in building products
• Use and maintain security tooling and processes, such as DAST / SAST tools and vulnerability reporting
• Deploy and automate AWS security features such as, IAM rules, AWS Config, roles etc.
• Confirm vulnerabilities in reports such as responsible disclosures
• Promote and champion a culture of Application Security among teams
• Facilitate and participate in incident response efforts
• Record and communicate vulnerability findings and keep records up to date
• Work with application development teams across Zwift to provide guidance on best practices for secure application development across a variety of languages and frameworks.
• Collaborate with application development teams to improve security test coverage and functional security testing.
• Triage incoming bug reports both from the information security team and the security research community.

Skills on Resume:

• Threat Modeling (Hard Skills)
• Risk Assessment (Hard Skills)
• Security Tooling (Hard Skills)
• AWS Security (Hard Skills)
• Vulnerability Management (Hard Skills)
• Promotion of Application Security Culture (Soft Skills)
• Incident Response (Hard Skills)
• Communication and Collaboration (Soft Skills)

Job Summary:

• Partner with software engineers, DBAs and QA engineers to ensure adequate security processes and tools are in place throughout
• Mitigate identified risks to an acceptable level, and to meet business objectives and regulatory requirements
• Based on your own strong software development background with prominent web development languages and frameworks
• Provide security advice to development and testing teams
• Provide expert-level guidance to business analysts, testers, and development teams during internal and external application security assessments
• Must be able to identify, re-create, and remediate security defects
• Provide training for development and QA teams on how to implement security into their existing practices
• Help to develop a security mind amongst the engineering teams
• Implement and execute an application-level threat modeling program for the enterprise
• Prioritize and track security issues and work with the necessary teams to ensure remediation
• Serve as a leader by promoting security awareness, mentoring other team members

Skills on Resume:

• Proficiency in Software Development (Hard Skills)
• Application Security Knowledge (Hard Skills)
• Collaboration and Communication (Soft Skills)
• Security Assessment and Remediation (Hard Skills)
• Training and Mentorship (Soft Skills)
• Threat Modeling (Hard Skills)
• Risk Management (Hard Skills)
• Leadership and Mentorship (Soft Skills)