Đăng nhập
Đăng ký
Mô Tả Công Việc
Position Overview The Security Engineer, Platform & Tooling owns the shared automation backbone that serves both security-operations teams (Red, Blue, Purple) and the product SDLC. The mandate is twofold: Eliminate operational toil by building reliable pipelines for scans, telemetry, and evidence management.Embed security into DevOps workflows (DevSecOps) so vulnerabilities are identified and remediated early.Core Responsibilities 1. CI/CD & DevSecOps Automation• Integrate SAST (Semgrep), DAST (ZAP, Burp), and SCA scanners into GitHub/GitLab pipelines.• Enforce IaC and container-image checks (Terraform, CloudFormation, Dockerfile linters).• Publish build-stage security metrics (OWASP risk tags, pass/fail gates) to engineering dashboards.2. Offensive & Defensive Tooling• Orchestrate bulk scans (ZAP, Nuclei, Semgrep) outside the SDLC for red-team engagements.• Parse SARIF/JSON outputs and route findings to DefectDojo and Jira with de-duplication logic.3. Telemetry Ingestion & SIEM/XDR Pipelines• Maintain schemas, enrichment, and data-quality checks for Windows/M365, AWS, and Azure logs.• Monitor pipeline health via automated SLIs/SLOs; trigger self-healing routines where feasible.4. Reusable Artefact Curation• Standardize Nuclei templates, Burp/ZAP add-ons, Sigma rules, and threat-hunt notebooks.• Version and distribute through an internal registry; provide CLI tooling for one-command deployment.5. Lab & Sandbox Infrastructure• Operate disposable AD forests, cloud sandboxes, and target containers for red/purple exercises.• Provide “one-click” Terraform/Ansible scripts that bootstrap environments in < 15 minutes.6. Process Optimization & Practitioner UX• Conduct quarterly time-motion studies to locate manual pain points.• Produce concise documentation and in-tool help to maximize adoption by security analysts and developers.7. Metrics & Continuous Improvement• Report KPIs (see below) to leadership; maintain a roadmap aligned with both Ops and SDLC priorities.
Xem toàn bộ Mô Tả Công Việc
Yêu Cầu Công Việc
Required QualificationsProgramming: Advanced proficiency in Python or Go for pipeline tooling and API integrations.CI/CD & DevOps: Demonstrable experience with Jenkins, GitHub Actions, GitLab CI, or Azure DevOps; familiarity with GitOps patterns.Security Scanners & Formats: Hands-on with ZAP, Semgrep, Nuclei, SARIF/JSON, CycloneDX, SBOMs.Container & Cloud: Docker/Kubernetes, plus AWS or Azure deployment experience; image-hardening and runtime-security controls.Data Engineering: Log parsing, schema mapping, and streaming (Kafka, Kinesis, or equivalent).IaC & Configuration Management: Terraform, CloudFormation, Ansible, or similar.Collaboration: Proven record of working with both software-engineering squads and security-operations teams, translating requirements into intuitive tooling. Preferred CredentialsExperience with implementing OWASP DSOMMGIAC Cloud Security Automation (GCSA)HashiCorp Certified: Terraform AssociateCertified Kubernetes Administrator (CKA)DevOps or DevSecOps-specific certifications (e.g., DSOE, CDP)Soft Skills:Strong proficiency in both written and spoken English.Adaptability to thrive in dynamic, fast-paced environments and remote work settings.Effective team player with excellent collaboration and interpersonal skills.Ability to perform under pressure with a positive attitude and a focus on team success.Demonstrates high levels of responsibility, reliability, and accountability.Willingness and ability to travel internationally when required.
Xem toàn bộ Yêu Cầu Công Việc
Hình thức
Full-time
Quyền Lợi
We go the extra mile to ensure your experience working onsite in the UAE is seamless, rewarding, and enriching:• Flexible Work Hours: Enjoy a balanced lifestyle with a 6-hour workday, from 10:00 AM to 5:00 PM, including a 1-hour lunch break.• 30 Days of Paid Leave: Accumulate your annual 30-day leave for longer holidays, travel adventures, or quality time with family.• Flight Benefits: We provide a round-trip flight to Dubai when you onboard, plus two return flights to Vietnam each year so you can stay close to home while building a global career.• Supported Living: We take care of your accommodation and support daily living expenses to ensure a comfortable, stress-free experience from day one. Our team will support you every step of the way.• Visa & Legal Assistance: We sponsor your visa and handle all required legal procedures, giving you peace of mind throughout the relocation process.• Modern Central Office: Our office is in the heart of vibrant Dubai, with easy access to metro lines, shopping malls, green parks, and world-class amenities.• Onsite Support: You’ll have the ongoing support of our HR and admin teams, dedicated to helping you settle in and thrive — both professionally and personally.________________________________________If you’re passionate about taking your tech career to an international stage — we’d love to hear from you.
Mức lương
Thỏa thuận
Báo cáo tin tuyển dụng: Nếu bạn thấy rằng tin tuyển dụng này không đúng hoặc có dấu hiệu lừa đảo,
hãy phản ánh với chúng tôi.
Tham khảo: 10 Dấu hiệu nhận biết hành vi lừa đảo qua tin tuyển dụng.
Tham khảo: 10 Dấu hiệu nhận biết hành vi lừa đảo qua tin tuyển dụng.
