Remote Senior Security Engineer
Posted
This job is closed
This job post is closed and the position is probably filled. Please do not apply. Automatically closed by a robot after apply link was detected as broken.
Description:
- Xometry is seeking a Senior Security Engineer with a strong background in DevSecOps, network security, and security architecture.
- The role involves embedding security into every stage of the software development lifecycle.
- The ideal candidate should have a minimum of 5+ years of experience in DevSecOps or related fields.
- Responsibilities include collaborating with development, operations, and security teams to integrate security into the CI/CD pipeline.
- The engineer will design, implement, and maintain security automation tools and processes to manage vulnerabilities.
- The role requires developing and enforcing security policies, standards, and best practices for both cloud-based and on-premises infrastructure.
- The engineer will monitor and analyze security vulnerabilities and incidents, providing timely remediation.
- Regular security assessments, including code reviews, vulnerability scans, and penetration tests, will be performed to ensure application and infrastructure security.
- The engineer will implement and manage security tools such as firewalls and intrusion detection/prevention systems.
- Collaboration with development teams to ensure secure coding practices and compliance with security standards is essential.
- The role includes leading efforts to secure Kubernetes clusters and containerized environments.
- The engineer will manage infrastructure as code (IaC) using tools like Terraform, OpenTofu, or CloudFormation.
- Automation of security tasks using Python and shell scripting is required.
- Staying updated with the latest security threats and technologies is crucial for enhancing the organization's security posture.
- Participation in incident response and disaster recovery planning and execution is expected.
Requirements:
- A minimum of 5+ years of experience in DevSecOps, DevOps, or a related field with a strong focus on security is required.
- Experience with AWS or deep fluency in GCP or Azure, with a desire to expand knowledge into AWS, is necessary.
- Proficiency with CI/CD tools such as Github Actions, Jenkins, GitLab CI, or CircleCI is required, along with experience in integrating security tools into these pipelines.
- Hands-on experience with Kubernetes, including securing and managing clusters in production environments, is essential.
- Proficiency with infrastructure as code (IaC) tools such as Terraform, OpenTofu, or CloudFormation is required.
- Strong programming skills in Python and shell scripting for automation and security tasks are necessary.
- Knowledge of security best practices, including secure coding, encryption, authentication, and access control, is required.
- Excellent problem-solving skills and the ability to troubleshoot complex security issues are essential.
- Strong communication skills to convey technical security information to non-technical stakeholders are necessary.
- Candidates must be US Citizens or legal permanent residents due to ITAR data handling.
Benefits:
- Xometry promotes diversity, equity, inclusion, and belonging in the workplace.
- The company is committed to providing a positive workplace for all employees.
- Xometry is an equal opportunity employer, considering all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.
- For US-based roles, Xometry participates in E-Verify to confirm work authorization in the U.S. after a job offer is accepted.
About the job
Posted on
Job type
Salary
Location requirements
Position
Experience level
Technology stack
