Senior Product Security Engineer

About The Position

Requirements

• Master’s degree (or its foreign degree equivalent) in Management Information Systems, Cybersecurity, or a related quantitative discipline, and two (2) years of experience in the job offered or in any occupation in related field.
• TCP/IP
• HTTP
• Microservices
• API Integrations
• AWS
• CI/CD Pipelines
• Docker
• ArgoCD
• Helm
• GCP
• Terraform
• Python
• Kubernetes
• Any suitable combination of education, training and/or experience is acceptable.

Responsibilities

• Deploy product security tools like SAST, DAST, IAST, SCA, etc to help uncover security issues early in the software development lifecycle.
• Build secure integrations following the SDLC process with various internal and external tools to create agile software security solutions.
• Keep security tools and deployments up to date.
• Ensure regular patching and upgrades and smooth running of tools.
• Help review development lifecycle integration with security tools and triage / debug any integration issues.
• Manage cloud security and WAF solutions to ensure SoFi’s infrastructure is secure.
• Participate in proof of concept to evaluate security solutions and services to help strengthen SoFi’s products against advanced Cybersecurity attacks.
• Work closely with security operations and application security engineers to review security gaps and develop mitigation strategies.
• Help with automation to support compliance with various regulatory and industry standards requirements.