Sr. Spclst , Cybersecurity Engineering Product Security

Merck & Co.West Point, PA
260d$114,700 - $180,500Onsite
Match Resume

About The Position

The position requires a strong background in cloud and container platforms, secure software development, and application security. Candidates should have experience with AWS, Azure, Kubernetes, and Tanzu/Cloud Foundry, as well as a solid understanding of web protocols and application security tools. The role emphasizes the importance of infrastructure as code and familiarity with various application models. Strong interpersonal skills and a passion for continuous growth in application security are essential.

Requirements

  • Experience with one or more cloud and container platforms such as AWS, Azure, Kubernetes, and Tanzu/Cloud Foundry.
  • Experience in secure software development (software/QA/DevOps engineer, etc.) or Information Security, with a strong desire to learn Application Security.
  • Understanding of web browsers, network and web-related protocols (TCP/IP, HTTP/HTTPS, SSL/TLS, DNS, SSH, etc.), web services, and APIs.
  • Familiarity with application security tools (SAST/DAST/OSS, Mobile, and API security testing, etc.).
  • Familiarity with secure cloud and container concepts, associated security risks, and best practices.
  • Strong understanding and experience with infrastructure as code tools and platforms, such as Cloud Formation templates and Ansible.
  • Understanding of various application models (client-server, desktop apps, mobile, etc.).
  • Familiarity with the software development/delivery lifecycle and accompanying technologies.
  • Basic understanding of general coding concepts and best practices, and the ability to read code (Python, Java, JavaScript, .NET, etc.).
  • Strong interpersonal, networking, influencing, and relationship-building skills, with the ability to navigate cross-culturally with a wide array of stakeholders, internally and externally.
  • Personal drive and passion for continuous growth and the advancement of Application Security best practices.

Nice To Haves

  • Understanding of OWASP Top 10 web application security risks (XSS, SQL Injection, etc.) and recommended mitigation strategies.
  • Experience with Agile development processes and DevSecOps best practices.
  • Standard industry certifications in Application Security, Information Security, Cloud, etc.
  • Familiarity with Infrastructure as Code (IaC) and associated security practices.
  • Experience with Continuous Integration/Continuous Deployment (CI/CD) pipelines and their security considerations.
  • Incident and vulnerability management experience.
  • Experience with securely implementing and managing secrets and cryptography according to industry best practices.

Benefits

  • Bonus eligibility
  • Long term incentive if applicable
  • Health care and other insurance benefits (for employee and family)
  • Retirement benefits
  • Paid holidays
  • Vacation
  • Sick days

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Industry

Chemical Manufacturing

Education Level

Bachelor's degree

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service