application security engineer
генерация резюме под вакансию
сопроводительное письмо
описание
DataRobot delivers AI that maximizes impact and minimizes business risk. The platform and applications integrate into core business processes so teams can develop, deliver, and govern AI at scale. DataRobot empowers practitioners to deliver predictive and generative AI, and enables leaders to secure their AI assets. Organizations worldwide rely on DataRobot for AI that makes sense for their business.
задачи
- Develop custom automation to manage security processes and implement "Secure-by-Design" processes in the CI/CD pipeline using Python;
- Identify, design, and implement controls to safeguard containerized production environments;
- Deploy and manage product security testing tools for SAST, DAST, and SCA analysis;
- Review technical designs for new features and lead threat models to prioritize risks;
- Educate developer teams on secure coding practices;
- Conduct and automate end-to-end vulnerability, threat, and exploitability assessments;
- Perform initial technical investigation for customer reports and security incidents;
- Coordinate with Engineering and IT Security to validate and track fixes;
- Resolve concerns regarding security exposure and architecture in collaboration with Sales and Support teams.
требования
- 5-7 Years of experience in Product Security or Application Security roles;
- Fluent in writing code using Python for security automation;
- Deep understanding of Linux containers, internals, and security isolation;
- Experience in Git-based collaboration and automating software delivery through CI/CD integration;
- Hands-on experience with security tools such as Semgrep, Trivy, and Burp Suite;
- Ability to reproduce vulnerabilities in a lab environment;
- Strong ability to perform manual or AI-assisted code reviews in Python, Go, and Node.js;
- Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or equivalent experience;
- Nice to have: Familiarity with Kubernetes orchestration.
условия
- Medical, Dental & Vision Insurance;
- Flexible Time Off Program;
- Paid Holidays;
- Paid Parental Leave;
- Global Employee Assistance Program (EAP).
навыки
Если просят войти через iCloud, отправить коды из SMS, запустить код, что-то установить, перевести деньги или сделать что угодно, связанное с деньгами, не соглашайтесь: это признаки мошенничества.