Job Details

ID #15100759
State West Virginia
City Reston
Job type Full-time
Salary USD TBD TBD
Source FireEye, Inc.
Showed 2021-06-04
Date 2021-06-04
Deadline 2021-08-03
Category Et cetera
Create resume

Product Security Engineer

West Virginia, Reston 00000 Reston USA

Vacancy expired!

Job Description

Keep FireEye Secureand helpDefend the Defenders.FireEye has an incredible opportunity to join a team of talented security architects and engineers collectively responsible for high-caliber problem solving in an environment where fighting Evil is everyone’s business. Trust is an important value we place in our solutions development and customers must trust our solutions are secure. Our Solutions Security Group is responsible for ensuring trust is built into every phase of our Mandiant Solutions development and works closely with our engineering and operation teams to evaluate the secure design and implementation of the solutions. Additionally, the Solutions Security Group educates development and operations teams on secure application and cloud development along with emerging threats, techniques and mitigations.

We are looking for a Product Security Engineer to help us drive a culture of security and build security into the CI/CD and DevOps pipelines. You will be challenged with solving complex problems, researching new threats and techniques and have access to some of the brightest minds in the business to fulfill the mission. The ideal candidate will be self-motivated, continually curious, and familiar with software development, application security, and cloud security methodologies and practices. As part of the FireEye Security team, you will play an integral role in helping the team defend the company from Evil.

What You Will Do:

· Guide security and privacy initiatives by participating in design reviews and threat modeling

· Design secure patterns and reference architectures that can be followed by development engineers

· Perform penetration testing and code review of our solution offerings and applications

· Participate in our incident response, vulnerability remediation and responsible disclosure efforts

· Evaluate application security tools for internal consumption. Develop new automation and tooling to improve detection and prevention capabilities

· Develop secure coding practices and educate development and operations engineers

· Manage third party security testing of our solutions

Qualifications

·3-5+ years of work experience in an application security role

· 3+ years of experience with code reviews, penetration testing, and threat modeling

· In-depth experience identifying and protecting against web application, web services security, API security, container security and cloud infrastructure security

· Relevant experience in several languages such as Python, JavaScript, Go, Java, Ruby, Rust, Node.JS, Terraform, CloudFormation

· Experience with application security tooling for SAST, DAST, composition analysis, web application security, containers, and serverless computing

· Understanding of application and cloud security frameworks and methodologies such as OWASP, BSIMM, CAS CMM, NIST SSDF

· Experience applying security tooling with development and CI/CD pipeline

· Strong communication skills for written and verbal interactions with development, infrastructure, and management teams

· Personal drive and passion to continually grow in the profession and focus on the company’s mission

Additional Qualifications

· US Citizenship

Additional Information

At FireEye we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

This is aregionally-basedrole that mustbe located on the East Coast.

Vacancy expired!

Subscribe Report job