Security Software Engineer Job Description
Security Software Engineer Duties & Responsibilities
To write an effective security software engineer job description, begin by listing detailed duties, responsibilities and expectations. We have included security software engineer job description templates that you can modify and use.
Sample responsibilities for this position include:
Security Software Engineer Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Software Engineer
List any licenses or certifications required by the position: CISSP, OSCE, OSCP, CISM, CSSLP, TLS, SANS, X509, X.509, AWS
Education for Security Software Engineer
Typically a job would require a certain level of education.
Employers hiring for the security software engineer job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Computer Engineering, Technical, Information Systems, Software Engineering, Education, Science, Mathematics, Software Development
Skills for Security Software Engineer
Desired skills for security software engineer include:
Desired experience for security software engineer includes:
Security Software Engineer Examples
Security Software Engineer Job Description
- Develop solutions and tools to help mitigate security vulnerabilities
- Recommend and establish security and secure practices throughout ShareFile, ShareConnect, Right Signature and Podio
- Be a security advisor for feature teams for the areas that you will focus on
- Drive your work to release
- Participate as a vested member in an Agile based development team
- As a technical expert, assist in product design, development, integration, and testing as required to help ensure secure products are delivered within defined goals and timelines
- Develop ICD-503 relevant documentation and edits as necessary
- Design and build prototypes and solutions
- Participate in various project and technology related communications with project staff, customers, vendors, support organizations, , and provide recommendations relating to security and privacy issues
- Prepare system security designs and select components to infuse system security methods
- Experience with advanced authentication and authorization technologies
- Development experience with a variety of languages - Java, SQL, JavaScript
- Experience with implementing Federation Technologies such as SAML, Open ID, OAUTH, & Mobile Auth solutions is a plus
- Experience with relational database systems such as Oracle, SQL Server is a plus
- Knowledge of web services (SOA), entitlement management, role mining, access management workflow, and Cloud management is a plus
- Familiarity with current legal and regulatory requirements around information security and privacy, including PCI, SOX, HIPAA, GLBA, etc is a plus
Security Software Engineer Job Description
- Develop and deploy authentication and security related components of Yelp’s website and mobile apps
- Develop libraries used across multiple Yelp apps for secure communication and data storage
- Be a security advisor for feature teams as they develop new features
- Drive your mitigation and feature development work into a publicly released product
- 3+ years of industry experience, because some things are best learned on the job and therefore we need experienced developers
- Provide quality recommendations to IT and development teams
- Administer Source Control and Project Management Systems (BitBucket and Jira)
- Emerging Threat and Vulnerability Research - You will identify and evaluate new areas for research, perform analysis into emerging threats, including proactive security research on the technologies that Azure and our customers utilize and depend on
- Strong multi-platform Object-Oriented programming skills, , C, C++, Java, Objective-C Expertise in at least one scripting language, , Python, Perl, JavaScript
- Implement security-critical fixes for discovered bugs
- Scripting languages, Shell/Ruby/Perl/Python/Groovy
- Mastery of web development technologies including MVC, SOAP, and REST services
- Strong knowledge of web UI languages CSS, JavaScript, and HTML
- Strong knowledge of of the following compiled languages C, C++, C#, or Java
- Expertise in at least one scripting language such as PowerShell, Bash, Perl, Python
- Demonstrated security development background in large scale enterprise systems
Security Software Engineer Job Description
- Establish a trusted security advisor role
- Mentor and train other technical team members throughout the company on the importance of secure software development
- Develop security metrics and measurement capabilities to demonstrate application security, security architecture, and Security Development Lifecycle (SDL) activities
- Guide teams on adoption and execution of a Secure Product Life Cycle (SPLC)
- Collaborate with Lead Application Security Engineer to create application security roadmap and strategy
- 3 years of experience with assessing threats, risk, and vulnerabilities, while working with internal/external pen testing teams
- 3 years of experiences working with OWASP, SANS Standards or OSSTM and experience with COTS security products
- Familiarity with threat modeling while reviewing designs and architectures
- Knowledge of key security technologies like OAuth, SAML
- Experience with Static and Dynamic Code Analysis tools like HP Fortify, HP WebInspect, IBM AppScan, VeraCode, Coverity
- Must be able to participate in 24/7 incident response
- Self-motivated and keen to learn and contribute towards security focused technologies
- Strong understanding of complex concepts related to computer architecture, data structures and programming practices
- Excellent grasp of C and C++
- Strong background with embedded bootloaders and software update strategies
- Strong background in Automotive communication (CAN, LIN, Ethernet AVB) software design and implementation
Security Software Engineer Job Description
- Develop novel analysis techniques to identify and eliminate entire classes of vulnerabilities
- Identify areas in security architecture requiring improvements
- Detect and identify anomalies, abnormal behavior, and malicious intent within an enterprise network, cloud, and host based environment
- Recommend scalable new processes and alerting procedures related to credential sharing
- Vulnerability scanning and penetration testing
- Regularly report on the security metrics of the product/application
- Contribute toward the strategic direction for Corporate Strategy Identity and Access Services
- Scale engineering - first and foremost the blue team is an engineering team and will be building at scale solutions to defend Azure DB with little (if any) human involvement
- Ensure proper documentation of the flaw with as much technical data as possible
- Ensure proper reference and other data as used by common vulnerabilities and exposures (CVE) pages
- Collaborate effectively with local and remote coworkers
- Raise key technical/process/risk issues and takes initiative to balance better/faster with secure ways of achieving desired outcomes
- Passion for learning with a track record of acquiring new skills and technologies in a rapid fashion
- Experience with Hardware Security Modules and secure key management protocols and API (KMIP, PKCS #11, ) a plus
- Fluent in development using Java
- 5+ years supporting hosted services in a high volume mission-critical environment
Security Software Engineer Job Description
- Reverse engineer software & network to discover new threats & evasion techniques
- Develop novel analysis techniques to locate those vulnerabilities in our products
- Conduct and lead threat assessments and propose remedies
- Develop security requirements and stories
- Lead conversations about security with prospective and current clients alongside the business and sales team
- Review stories and convert them into low level designs
- Analyze the security of production and pre-production system
- You’ll help our customers achieve their real goals by understanding their requirements and how they respond to their application security needs
- You’ll use technologies that include Java, C#, C++, JavaScript, REST Services, Micro Services Databases SQL & NoSQL, Container based technologies and more
- You have the work and academic experience that will demonstrate proficiency and ease with programming languages, mobile technologies, quality assurance, scripting languages and operating systems
- Experience with relational databases, NoSQL, Caching technologies
- Hands on experience developing, diagnosing for performance and scalability
- Familiarity with the ELK/EFK/ERK stack is a plus
- Familiarity with modern agile development processes
- Knowledge of free and open source software development concepts and methodology
- While our team primarily focuses on server-side development, we are looking for a SDE who also has some background in User Interface development since some of our services have a GUI front-end