Infrastructure Security Engineer responsible for integrating security into infrastructure workflows and automating security measures. Collaborating with SRE teams to maintain a secure infrastructure posture.
About the role
- Application Security Architect with software development and application security experience needed for WEX. Responsible for securing applications by guiding and assessing security solutions.
Responsibilities
- Design, guide, and assess security solutions in software projects
- Perform assessments of software projects to identify security issues
- Guide teams to effective remediations
- Collaborate closely with internal teams and customers to ensure WEX operates in a secure and compliant manner
- Mentor other engineers & architects on your team and other teams both technically and professionally
- Champion a shift-left and DevSecOps approach to security
- Perform manual and automated secure code reviews, assisted with commercial static and dynamic application security scanning tools (SAST, DAST, SCA, etc)
- Conduct web application and mobile app penetration testing
- Write comprehensive reports including assessment-based findings, outcomes and recommendations for security enhancement.
Requirements
- 3-5+ years of progressive experience in software development
- C#, Java, Go or Python preferred
- 3+ years experience with software security or information security
- 2+ years experience with application and container security tools such as SAST, DAST, SCA, IaC scanning and container image scanning
- Very familiar with common application security issues, ie OWASP Top10
- Able to troubleshoot security issues within a complex on-prem and multi-cloud environment
- A degree in Business, Computer Science or equivalent combination of education and relevant experience.
- Have experience working closely with many teams across departmental and business unit boundaries
- Can commit and deliver on very specific project/delivery timelines with minimal supervision
- Have excellent communication skills, both written and verbal.
Benefits
- health, dental and vision insurances
- retirement savings plan
- paid time off
- health savings account
- flexible spending accounts
- life insurance
- disability insurance
- tuition reimbursement
- and more.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Software Engineer supporting software development teams in security lifecycle processes. Creating security concepts and assisting in web application security topics with a modern tech stack.
Intern or apprentice at PCtronics gaining exposure in IT operations, cybersecurity, and automation. Support client onboarding and documentation within a managed IT environment.
Cyber Security Engineer focusing on secure software development and cybersecurity solutions for ADI Global Distribution. Engaging with an international team to enhance software integrity and security practices.
Cyber Security Engineer designing and developing cybersecurity tools and solutions for ADI Global Distribution. Role involves secure software development and cloud engineering to ensure cybersecurity integrity.
Specialist in product security for TIAA focused on maintaining security throughout product lifecycles. Engaging in product development, vulnerability analysis, and team collaboration.
Head of IT, Security & Compliance ensuring the IT infrastructure and compliance at CameraMatics. Leading security initiatives and regulatory obligations in a hybrid work setting.
Security Officer conducting interior and exterior patrols to ensure safety and monitor access in data centers. Collaborating with clients and performing various security duties.
Managing Director for Security and Resilience at Edison Electric Institute overseeing security and resilience operations for electric power system. Leading a team of experts in national security and regulatory processes.
Head of AI Security at Absa developing security frameworks for AI systems. Responsible for safeguarding AI platforms against cybersecurity threats and ensuring secure development practices.