Senior Security Engineer

Job description

Introduction
At IBM, work is more than a job – it’s a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you’ve never thought possible. Are you ready to lead in this new era of technology and solve some of the world’s most challenging problems? If so, lets talk.

Your Role and Responsibilities
Instana is looking for an experienced security engineer to join the Security
Enablement Team.
The team you will be joining has the mission of ensuring Instana development processes and product has world class cyber security. Our customers expect and depend on the highest possible security standards.

The role involves:
·  Analysing, triaging and tracking identified vulnerabilities and ensuring timely remediation by development teams.
·  Helping development teams understand and resolve a wide range of security issue. Examples might include SAML, MTLS, CVE vulnerability analytis and resolution, penetration test findings, secure coding practices.
·  Helping compile evidence for security certifications such as SOC2, FedRAMP in a timely manner.
·  Responding to customer support cases relating to security.
·  Improving automation around security detection and issue tracking.

Required Technical and Professional Expertise
Required Experience:
·  Proven track record of development using secure programming techniques
·  A broad understanding of the security considerations for both front and back end development in both onsite and SAAS environments
·  Experience of development using open source software and dealing with CVEs
·  Fluent in written and spoken English.
·  Scripting (eg: Shell, Python etc)
·  Docker

Preferred Technical and Professional Expertise
Desirable Experience
·  Participation in security certification activities (eg. SOC2, FedRAMP, ISO) CICD (eg Jenkins, CircleCI)
·  Kubernetes