engineering
remote job
The Puma Security team is looking for a Senior Security Engineer to focus on cloud security, DevOps security automation, and contribute to the Puma Scan security platform. This position would be responsible for performing cloud security posture reviews across AWS, Azure, and GCP, as well as helping customers integrate automated scanning in their CI / CD workflows. Additional responsibilities building CI / CD extensions, writing code analysis rules, providing product support, assisting with code reviews, application penetration testing, and more.
Performing Cloud Security Posture Reviews (CSPR) across the AWS, Azure, and GCP public clouds.
Performing Software Development Lifecycle (SDL) assessments for customers.
Performing network and application penetration testing.
Writing security assessment reports and technical product documentation for customers.
Building custom CI / CD security integrations and reporting capabilities.
Writing security analyzers to identify vulnerabilities in C#, NodeJS and JavaScript
Developing new features and enhancements for the Puma Scan platform to help customers gain better visibility into their security posture.
Building demonstration applications in C#, NodeJS and JavaScript with vulnerable code examples for training.
Cloud security in AWS, Azure, and GCP
CI / CD systems such as GitHub Actions, GitLab CI / CD, and Jenkins
Automate all the things. Programming in languages such as Python, NodeJS, .NET C#, and NodeJS. Configuration as Code such as Terraform, YAML, and Rego.
Product / application security vulnerabilities, exploitation and secure coding techniques (OWASP Top 10, OWASP ASVS)
Markdown
Naturally creative, curious and inspired to learn new things
The range for this role varies from $125,000 - $150,000 USD per year.