F5

Principal Engineer – PlatSec Development

F5

full-time

Posted on:

Location Type: Hybrid

Location: SeattleCaliforniaWashingtonUnited States

Visit company website

Explore more

AI Apply
Apply

Salary

💰 $186,400 - $279,600 per year

Job Level

Lead

Tech Stack

JavaJenkinsPythonSDLC

About the role

  • Drive secure coding practices across the F5 BIG-IP platform by conducting code reviews
  • Identify security vulnerabilities and collaborate with development teams
  • Perform manual and automated code analysis using SAST and DAST tools
  • Review code for compliance with secure coding standards
  • Analyze security implications of design decisions
  • Develop security coding guidelines and standards
  • Champion secure-by-design principles across engineering teams
  • Mentor junior engineers on security best practices and code review techniques
  • Analyze vulnerability reports, CVEs, and security advisories
  • Track security findings through resolution using Bugzilla or similar tracking systems
  • Stay current with latest security threats, attack vectors, and defensive technologies
  • Evaluate and recommend new security tools

Requirements

  • 12+ years of hands-on experience in secure code review and secure software development
  • Proven track record identifying and remediating security vulnerabilities in production code
  • Experience integrating security into agile software development processes
  • Proficiency in Python, Java, C/C++
  • Deep understanding of secure coding principles, OWASP Top 10, CWE/SANS Top 25
  • Experience with Static Analysis Tools: SonarQube, Checkmarx, Fortify, Coverity, Semgrep
  • Experience with Dynamic Analysis Tools: Burp Suite, OWASP ZAP, Acunetix
  • Familiarity with Code Review Methodologies: Manual code review, peer review, automated scanning integration
  • Proficient with Source Code Management: Git, GitHub, GitLab, Bitbucket
  • Experience with SDLC Integration: CI/CD security gates, GitHub Actions, Jenkins
  • Bachelor's degree in Computer Science, Information Security, Software Engineering, or related field
  • Certifications: GIAC Secure Software Programmer (GSSP), Certified Secure Software Lifecycle Professional (CSSLP), CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional)
Benefits
  • 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
secure code reviewsecure software developmentPythonJavaC/C++secure coding principlesOWASP Top 10CWE/SANS Top 25Static Analysis ToolsDynamic Analysis Tools
Soft Skills
mentoringcollaborationcommunicationleadership
Certifications
GIAC Secure Software Programmer (GSSP)Certified Secure Software Lifecycle Professional (CSSLP)Certified Ethical Hacker (CEH)Offensive Security Certified Professional (OSCP)