As a security engineer, you are a member of a security engineering team that supports the regular product development teams in implementing the BD-wide defined product security requirements into their products and integrating a secure development lifecycle into their development processes.
The position represents the connective link between the BD Product Security Office and the regular product development teams. You will be part of a newly formed security engineering team comprising members from Austria, Germany, and the United States.
Responsibilities
* Support product development teams during the implementation of product security requirements.
* Coach developers on IT security topics that are required for that task.
* Provide/maintain shared components and tools, allowing easy integration of existing security implementations.
* Implement shared components and tools based on product-specific technology stacks to realize product security requirements if necessary.
* Perform code reviews and provide recommendations for existing implementations.
* Mentor interested developers to become "the local security specialist" in their team.
* Support product development teams in integrating security-enhancing build steps (e.g., code signing, static application security testing, etc.) into their build environment.
* Support BD security specialists in performing risk assessments, threat models, and penetration tests for different products by preparing test environments and technical documentation and coordinating necessary resource allocations with the product development teams.
* Support product development teams in creating the necessary product security documentation for their products.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
* Bachelor's degree in Computer Science or a related field or equivalent work experience.
* Minimum of 7 years of professional software development experience.
* Experience with C# for backend and frontend development or, alternatively, experience in web development with C# in the backend and a JavaScript framework in the frontend.
* Experience working on security for data in transit and data in rest
* Understanding of common transport encryption concepts like TLS.
* Understanding of standard authentication methods like OAuth.
* General interest in IT security topics.
* Ability to work independently and coordinate with team members in Austria and Germany
* Additional experience with other programming languages like C/C++ or scripting languages like PowerShell script or Bash script is welcome
* Security-related certifications like SSCP or CEH
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.