VMware is looking for a Security Software Engineer interested in joining the Bitnami Content Engineering R&D team, part of the Modern Applications Platform group. The team is primarily focused on implementing new Cloud Native applications for Tanzu Application Catalog, but also engaged in configuring those servers and applications to be secure and production-ready on Kubernetes environments.
The candidate should be able to identify possible security issues, design systems to detect vulnerabilities and implement processes into the software supply chain. The position involves evaluating tools, designing processes and implementing solutions for detecting proactively security vulnerabilities.
The job also expects you to implement the mechanisms to validate & get the most important security compliances. You’ll be part of a bright engineering team that has an open communication, empowerment, innovation, teamwork and customer success culture.
Lead discussions in determining our responses to security notifications (i.e. how fast do we need to respond to specific CVEs). Be the final authority in making such decisions.
Write explanatory blog posts and customer communications regarding the decision making rationale, actions taken, if any, and actions required by users and customers, if any.
Consult in designing all of our applications, containers, and VMs so that they are secure by default.
Devise vulnerability tests and/or evaluation criteria as CVEs are issued.
Establish engineering and decision making processes around security issues and responses.
Drive compliance and perform gap analysis with regulatory and industry standards required by enterprise customers and prospects. Prepare and document standard operating procedures and protocols.
Determine security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates.
Respond to Enterprise Customers’ security questionnaires. Represent VMware to partners and customers regarding the security of products and security-related methodologies.
Lead efforts to automate security best practices, including by writing code when appropriate.
Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
Consult with all engineering teams at Bitnami to ensure that all plans and architectures are pursued with a security focused mind set.
Maintain security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs.
Upgrade security systems by monitoring the security environment; identifying security gaps; evaluating and implementing enhancements.
Bachelors or Masters degree in Computer Science or equivalent preferred; demonstrable understanding of systems, algorithms, and OO design required.
8+ years of software engineering experience.
5+ years experience in Security using industry standards. Experience with compliance programs (PCI, HIPAA, NIST, SOC II, etc.) is a plus.
Proficient knowledge of a back-end programming language (i.e. Go, Ruby, NodeJS, Python, etc.) and code versioning tools.
Exposure to security practices for container and Kubernetes technology, container-focused Linux distributions, and virtualization in the cloud.
Experience mentoring junior engineers.
Exceptional organization skills and proven ability to prioritize work.
Excellent verbal and written communication skills (English).
Strong familiarity with Agile development.
Ability to work daily in our Sevilla, Spain office or remotely.
This position is eligible for TanzuChallenge referral campaign
Category : Engineering and Technology
Subcategory: Software Engineering
Experience: Manager and Professional
Full Time/ Part Time: Full Time
Posted Date: 2020-11-03