Remote Security Engineer II Job in Washington, United States fabric

Who you are

• 5+ years of experience in security engineering/application security
• 2+ years of experience with AWS
• Experience with Python or JavaScript
• Experience with OWASP and NIST standards and frameworks
• Experience with DevSecOps, CI/CD, and related tools
• Ability to establish and report security metrics and KPIs
• Excellent written and verbal communication

Desirables

• Experience as a DevOps/DevSecOps Engineer supporting applications in cloud
• Experience with SIEM tools like Splunk or Datadog
• Experience in information security for ecommerce/web applications
• Knowledge of security architectures and cloud deployment paradigms
• AWS Security Speciality certification
• Experience with code review, SAST, DAST, SCA, container security, IaC scanning
• Understanding of security automation in DevOps and CI/CD

What the job involves

• The successful candidate will have prior experience in application security in the retail/ecommerce industry and is a hands-on technologist. This person is responsible for the ownership of key projects within the security space. You will drive secure code design and integration of our software stack, mitigating attack risks, securing cloud transformation, and fostering a culture of security and reliability within the company.
• Design, deploy, and maintain centralized security tools, technologies, and controls. Conduct security reviews for systems, integrations, and processes, including testing and scanning. Develop security metrics and track progress toward security goals. Assess and mitigate security risks, vulnerabilities, and threats. Educate and train employees on security awareness.