Security Engineer – Application / Product / Cloud Security

Join an engineering environment, with multiple DevOps teams working on different products and infrastructures, supporting them with various security engineering related areas. Think areas like application security, cloud security, triaging issues and giving whatever support needed in other security areas required!

You are a hands on, get things done security professional with the ability to work with multiple stakeholders (other security team members, product teams, external collaborators), bringing your security experience and problem solving approach and good communication skills to support secure the environments / applications and overall improve the security maturity of things.

As it’s an environment where a lot of critical, scalable, CI/CD type of infra/products are being build, the following are important to successfully contribute to the security team efforts:

• Not afraid to delve into solving problems with others, get your hands dirty and work on operationally contributing for that (think of take ownership of security tickets coming in for various issues; fixing security tooling, triaging an incident, security checks etc.
• Do the above with an improvement mentality; bring your experience / skills to the table to get things better than you found them.
• Don’t be afraid to jump into areas where you don’t have a lot of experience in (e.g. give help to an incident outside your comfort zone, learn how to better triage, investigate on how to fix something you haven’t work with before etc.)
• Comfortable with bringing your security engineering skills to link with other security or development areas (monitoring/detection related alerts linking to an application/infrastructure that needs checking, script/adjust code of scripts to fix things going wrong.
• Be able to analyze, tweak and fix automation related tasks/scripts/tools.
• Bring an overall security mindset to what you do, influencing the other stakeholders to think security, as well as understand security related implications of the things, you / others in the teams you collaborate with, are working with.
• Be comfortable with working with tools like or similar to GitLab / GitHub / Azure DevOps, Splunk / datadog or other similar platforms, other security automation tools, and be comfortable with scripting (e.g. using Python).
• Don’t have to know everything; have the right mentality to quickly figure things out, or learn from others! Lots of room for that in this environment and collaboration / learning mindset in general in the teams.

Could you contribute in successfully supporting in such an environment, while having the chance to also pick up new skills / be exposed to new technologies, tools and methodologies? Reach out for a conversation now!

Relevant terms: AppSec, IT Security, Security Engineering, SSDLC, Product security, CI/CD, CICD,  OWASP, OSSTM, SCRUM, Agile, Python, Terraform, Azure, AWS, GCP, Web Application Security, Web Services, API Security, Security Breach, Secure Code Analysis, Threat Analysis, SAST, DAST, SCA, Container Security, Kubernetes Security, EKS, Infrastructure as Code, Software Security, CSSLP,  Application Security, Web Application Testing, API testing, Security Testing Automation, Cryptography, TLS, SSL, Security Incident Handling, Security Investigation, Triaging, MDR, Security Automation

Base Cyber Security helps organizations build knowledge and capabilities in information security. Supporting organizations putting together strong infosec teams or finding the right cyber security experts for their needs is a big part of that.

We work with security professionals globally for information and cyber security roles and projects across all industries in Europe. Whether you are starting your career in information security, need advice for your next step, deciding on how to build knowledge or choose a growth area in security to continue with, let’s have a conversation!

If you have not yet registered with the Base Cyber Security network, be sure to do so! Send us your details at [email protected] & follow us on Twitter @BaseCyberSec to stay up to date with our activities and relevant info.

By registering with the security community and / or showing interest in a specific role, project or team, you agree with sharing your personal information with Base Cyber Security, which will in turn collect, use and process this in an ethical, private and compliant (including under the GDPR where applicable) manner.