Tessitura

Security Automation Engineer

Tessitura

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Salary

💰 $70,000 - $85,000 per year

Job Level

Junior

Tech Stack

AWSCyber SecurityTerraform

About the role

  • Implement and maintain secure CI/CD pipelines using Bitbucket Pipelines, AWS CodePipeline, and other automation tools
  • Develop secure “paved roads” including preconfigured Terraform modules, container images, and pipeline templates
  • Update the paved roads as security requirements and capabilities evolve
  • Contribute security requirements and standards to the Engineering Foundations
  • Create and maintain guardrails that enable developers to move quickly while automatically enforcing security standards
  • Build and maintain security scanning automation as part of CI/CD pipelines, including vulnerability scanning, static code analysis, and dependency checking
  • Build and maintain Security-as-a-Service offerings for internal use, e.g.: Reusable security tools and libraries
  • Build and maintain log ingestion pipelines and services to collect security-relevant data
  • Embed into software engineering project teams as an assigned security representative.

Requirements

  • A Bachelor’s degree in a field related to computer science, cyber security, or information technology—or recent equivalent experience
  • One to three years of experience in a DevOps, software engineering, cyber security, or application security role
  • Experience securing CI/CD pipelines and working with infrastructure-as-code tools
  • Understanding of AWS security services and infrastructure management
  • Working knowledge of application security testing approaches (e.g. SAST, DAST, SCA)
  • Working knowledge of Git version control and branching strategies
  • Familiarity with shift-left and developer-centric approaches to application security
  • Experience building or maintaining log ingestion pipelines, including configuring their data inputs and setting up log forwarding
  • A high level of comfort both working independently and being embedded into cross-functional or project teams
  • An effective approach to communicating and partnering with developers that results in practical security outcomes
  • Eagerness to learn new technologies and adapt to new security challenges
  • The legal right to work in the United States.
Benefits
  • various medical, dental, and vision plans
  • life and AD&D insurance
  • disability insurance
  • employee assistance programs
  • 401(k) retirement plan with employer match
  • generous paid time off including vacation and sick leave
  • 12 weeks of paid parental leave
  • 7-week sabbatical after seven years of service
  • recharge week between Christmas and New Year’s
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
CI/CD pipelinesTerraformvulnerability scanningstatic code analysisdependency checkinglog ingestion pipelinesapplication security testinginfrastructure-as-codeAWS security servicesGit version control
Soft Skills
communicationcollaborationindependenceadaptabilityproblem-solving