Job Description
Role- Security Software Engineer (Golang Engineer with Strong Security Background)
Location: Must be Local to Phoenix, Arizona or Atlanta, Georgia ( Relocation before day 1 Okay)
Contract: Long Term Contract
Responsibilities:
" Secure Software Development: Develop and maintain Go-based software components, libraries, and microservices that contribute to the security of the software supply chain across private and public multi-cloud.
" Cloud Integration: Collaborate with engineering teams to integrate security solutions into cloud platforms, ensuring the safety of software artifacts at rest, in transit, and at run-time.
" Threat Analysis: Stay up-to-date with emerging threats and vulnerabilities in the cloud and software supply chain space and develop proactive solutions to mitigate risk.
" Documentation: Maintain comprehensive documentation of security policies, procedures, and codebase changes.
" Collaboration: Work closely with cross-functional teams to ensure a holistic approach to software supply chain security. Present key security ideas to various audiences (technical and non-technical) effectively.
" Deliver Cloud Security Engineering functions intended to establish security code elements across private and public multi-cloud.
" Provide security and engineering expertise and guidance to the Cloud Programs, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Policy as Code (Client).
" Collaborate with enterprise architects and SMEs to deliver complete security architecture solutions.
" Design and deliver Container security requirements and guardrails across VMs, Containers, CNI, CSI, and Mesh
" Identify exciting opportunities for adopting new technologies to solve existing needs and predicting future challenges.
Required Skills/Experience:
" Proven experience with the Go programming language demonstrating a strong understanding of best practices and design patterns.
" 3 years of experience in Information Security roles with increase of responsibilities and scope.
" 2+ years of experience designing, implementing, and supporting microservice architecture.
" Understanding of classical or cloud-native design patterns.
" Experience safeguarding artifacts integrity across the software supply chain.
" Experience building and consuming gRPC, REST, or GraphQL APIs
" Experience with Docker, Open Containers Initiative, or similar.
" Experience applying Security Principles to Kubernetes or OpenShift clusters and container workloads.
" Understanding of Cloud Fundamentals, including securing public cloud with data protection controls.
" Experience performing validation and verification of configurations in a cloud environment.
" Knowledge of security configuration management, container security, endpoint security and secrets management as they are applied to cloud applications.
" Experience with multiple Information Security domains, such as Infrastructure Vulnerability, Data Loss Prevention, End User Security, Network Security, Internet Security, Identity & Access Management, etc.
" Familiarity with CI/CD processes and pipeline integration using Git, Jenkins or GitHub Actions, and ArgoCD.
" Experience defining resource configurations using Helm.
" Understanding of DevOps and DevSecOps principles
Educational Requirements:
" Bachelor's Degree in Computer Science, Software Engineering, Electrical and Computer Engineering (ECE), or equivalent information security degree with at least 2 years of enterprise cloud development experience.
" Certified Kubernetes Administrator (CKA) or similar work experience.
" Certified Kubernetes Security Specialist (CKS) preferred.