Lead Security Engineer
Description
Lead Security Engineer
About Us:
More than 20 years ago, 5 friends envisioned a bold future. Over the years, we’ve kept innovating marketing technology so brands like Porsche, L’Oréal, and Proctor & Gamble can deliver memorable experiences for their customers. Sitecore has 25 offices across the globe and around 1,700 employees worldwide. Learn more at Sitecore.com.
About the Role:
Sitecore is looking for a Lead Security Engineer with a well-rounded skill set in security development and testing to support the Sitecore Experience Platform and Managed Cloud products. As a Lead Security Engineer, you’ll collaborate closely with the other Security Engineers in Engineering and IT Security Team across Europe and Nord America to align and optimize our security testing and secure application development.
What You’ll Do:
- Drive security improvement and compliance within Sitecore Experience Platform and Managed Cloud.
- Supporting the planning, design, development, and testing of products and addressing potential security concerns around product development.
- Participating in code review practices on occasion, sharing his technical knowledge with colleagues, gradually challenging people as a mentor and giving them feedback.
- Collecting and analyzing data from security testing activities, communicating findings to the program and teams, and reporting valid and reliable information about the quality of the product to the Engineering leaders.
What You Need to Succeed:
- Proven working experience with Azure cloud provider and its security features.
- Experience with security frameworks such as ISO 27001/27017/27018, SOC 2, HIPAA, NIST, and CIS and strong understanding of security principles, protocols, and technologies.
- Proficiency in security tools and technologies, including firewalls, intrusion detection/prevention systems, and vulnerability scanners. (Static Code Analysis, Third Party Library Scanning, Container Security, Web Penetration Testing, etc.)
- A profound understanding of code best practices and standards for development and testing.
- Excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams.
Additional Skills That Could Set You Apart:
- Relevant certifications such as AZ500, SC-100, SC-300, OSCP, CISSP, CISM, or CEH.
Why you should click ‘Apply’:
Sitecore is on a path of significant growth, driven by our passion for new technologies. We are prepared to capitalize on a $30 billion market opportunity, a testament to the promising stage of this field. Joining Sitecore now offers a unique chance to shape an industry that’s just beginning to unfold its potential.