Sr. Security Engineer
F5 Networks
San Jose
hace 5 días

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

About the position :

F5 (Volterra) is looking for a hands-on Sr. Security Engineer with experience owning vulnerability management and code security program.

F5’s Edge 2.0 platform provides global, scalable, and secure way to deploy applications! In this position, you will have responsibility for vulnerability management of open-source components in the software components that make up the platform.

You will also be responsible for code security and handle static and multifaceted code scanning and write policies and procedures around the lifecycle of the code and associated vulnerabilities.

Responsibilities :

  • We collaborate with software architects, security defenders, Operations, SRE, compliance specialists, and business leaders to understand the components of the platform and their requirements around vulnerability management, static and dynamic code analysis depending on the component’s structure and place in the platform.
  • We write and maintain policies and procedures around vulnerability management and code analysis following industry methodologies and compliance directives
  • We integrate with scanning tools and provide mentorship to the developers around integration, how to read the findings, and how to improve the output.
  • We work with architects of underlying frameworks to minimize the number of reported vulnerabilities when there is a significant code reuse
  • We work with other members of the DevOps team to introduce tooling to increase clarity and better quantify the vulnerability remediation
  • We work with engineering teams to incorporate the best standards from vulnerability management and code analysis into the SDLC
  • We work with other team members to safely introduce dynamic code analysis tools
  • We participate in Incident Response when appropriate
  • Minimum qualifications :

  • BS degree in Computer Science or equivalent with 7+ years of secure software development experience
  • Hands-on experience with build systems and dependency systems for multiple languages including Golang, Java, C++, Javascript, Python etc.
  • Hands on experience with computer programming languages Golang, C++
  • Good understanding of Docker container building process
  • Experience with vulnerability management systems like Snyk, Whitesource, Trivy, Dependency-check, Nancy etc.
  • Experience with SAST tools like Coverity, FindSecBugs, Fortify, Veracode, etc.
  • Familiarity with microservices architecture, Docker and Kubernetes
  • Good understanding of complexities and security challenges in large-scale distributed systems
  • Self-motivated and willing to delve into new areas and tackle new challenges in an enthusiastic manner
  • Excellent written and verbal communication skills
  • Strong interpersonal, team building, and mentoring skills
  • We are an equal opportunity employer and value diversity at our company! We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.

    We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment.

    Please contact us to request accommodation.

    Reportar esta oferta
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Inscribirse
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
    Continuar
    Formulario de postulación