Job Details

ID #11561580
State Florida
City Ftlauderdale
Job type Permanent
Salary USD TBD TBD
Source Ultimate Kronos Group (UKG)
Showed 2021-03-29
Date 2021-03-28
Deadline 2021-05-27
Category Architect/engineer/CAD
Create resume

Devsecops Engineer

Florida, Ftlauderdale, 33301 Ftlauderdale USA

Vacancy expired!

UKG is seeking a talented DevSecOps Engineer to join our internal Global Security Research & Architecture team chartered to identify application security vulnerabilities within the UKG product lines. The goal of this team is to make sure that the code of our family of enterprise software applications is secure. This is a rare opportunity for the right DevSecOps Engineer to join UKG’s award winning team. You will be working alongside some of the best in the business. If you are qualified and want to join our top-rated team, apply online today. You will be focused on working with application project and development teams throughout the entire process. Here at UKG, Our Purpose Is People. UKG combines the strength and innovation of Ultimate Software and Kronos, uniting two award-winning, employee-centered cultures. Our employees are an extraordinary group of talented, energetic, and innovative people who care about more than just work. We strive to create a culture of belonging and an employee experience that empowers our people. UKG has more than 13,000 employees around the globe and is known for its inclusive workplace culture. Ready to be inspired? Learn more at www.ukg.com/careers

Primary/Essential Duties and Key Responsibilities:
  • Ensure that the Static Application Security Testing (SAST) environment is performing optimally
  • Provide education and guidance about SAST tools and process best practices
  • Ensure compliance with applicable Policies, Standards, Requirements and Directives
  • Assist with audits to demonstrate compliance
  • Schedule, scope and prioritize SAST assessments of applications
  • Identify, document, rate, and communicate vulnerabilities to responsible teams
  • Reproduce, demonstrate and retest vulnerabilities
  • Maintain awareness of security issues amongst development community
  • Continually improve SAST process and environment
  • Provide expertise in Continuous Test/Integration/Deployment platforms
  • Assist dev teams during release deployment and with periodic system/application patching

Required

Qualifications:
  • Must have a bachelor's degree in Computer Science or related field
  • 5+ years of information technology industry experience
  • 4+ years of application security experience
  • Must be familiar with OWASP top ten understanding of vulnerability governance and reporting
  • Working experience with Software Composition Analysis (SCA) tools - Black Duck, Sonatype Nexus, etc.
  • Working experience with Static Application Security Testing (SAST) tools - Fortify, Checkmarx, Veracode, etc.
  • Experience in consuming APIs
  • Fluent in scripting languages - Bash, Python, JavaScript
  • Understanding of multi-tiered architecture
  • Experience developing and testing apps in. NET or Java
  • Experience with cloud security - Google Cloud Platform (GCP), Microsoft Azure, Amazon AWS
  • Experience with code repository management platforms - GitHub, BitBucket, GitLab
  • Must be a team player with great interpersonal skills
  • CISSP (Certified Information Systems Security Professional) or other security certification a plus
  • CSSLP (Certified Secure Software Lifecycle Professional) or equivalent experience
  • SSDLC (Secure Software Development Life Cycle) or SDL (Secure Development Lifecycle) certification
  • DGIAC GWEB (Web Application Defender) certification preferred

Physical Requirements:
  • No unique physical requirements

Travel Requirements:
  • 0-5%

This job description has been written to provide an accurate reflection of the current job and to include the general nature of work performed. It is not designed to contain a comprehensive detailed inventory of all duties, responsibilities, and qualifications required of the employees assigned to the job. Management reserves the right to revise the job or require that other or different tasks be performed when circumstances change. Ultimate Software will reasonably accommodate employees with disabilities as defined by the Rehabilitation Act of 1973, the Americans with Disabilities Act (ADA) and other appropriate statutes. If you are an applicant and need a reasonable accommodation when applying for job opportunities within the Company or request a reasonable accommodation to utilize the Company’s online employment application, please contact accessibility@ultimatesoftware.com. It has come to our attention that some people have been contacted online by persons impersonating job recruiters for Ultimate Software. These fraudulent “recruiters” have used Gmail accounts to contact, and have requested personal information, such as depositing a check to purchase work-related supplies. These are not legitimate recruiters or job offers, and do not represent Ultimate Software. To safely apply for and view open positions at Ultimate Software, please click “Apply" and follow the instructions. Note that our recruiter emails always come from an official ultimatesoftware.com email address. If you suspect you have been the victim of this or a related fraud, immediately contact your financial institution, and then file a complaint with the FBI’s Internet Crime Complaint Center at www.ic3.gov. If you shared other personal or sensitive information, you may need to take additional actions relative to what was shared. Your local law enforcement department may also be able to assist. For any general security related questions regarding Ultimate, feel free to email security@ultimatesoftware.com.

Vacancy expired!

Subscribe Report job