Job Description SummaryAre you ready to make a difference in this world? Do you want to be part of a team that develops ground-breaking medical and biotechnology services and devices? One person can make a singular difference in saving and improving lives. At BD, we are looking for amazing, passionate and dedicated people like you. BD, a company standing on 120 years of innovation in medical technology, is currently recruiting talented individuals to join our new Research and Development (R&D) Centre of Excellence in Limerick. BD’s purpose is to advance the world of health. As part of our team, you will be on the forefront of creating and developing specialized devices, software solutions and systems to help others. Our new Centre in Limerick provides you with cutting edge technology and a creative environment to be inspired to tap into your inner genius. You are the one who can make the difference. Join us and be a crucial part of advancing the world of health!
The Senior DevSecOps Engineer is expected to have experience in multiple security domains, to develop scalable solutions for complex business problems. That includes concepts of TPM, Windows DPAPI, application security, and HTTPS.
As Senior DevSecOps Engineer you will:
Consult software development and DevOps teams in the design and architecture of secure systems. Collect, identify, and develop best practices for specific security-related problems.
Train developers for OWASP Top 10.
Perform threat modelling exercises and facilitate technology security reviews including Secure SDLC testing requirements
Identify, prioritize, and help implement security improvements that maximize security while keeping developers productive
Serve as security go-to person for product security
Integrate security in the DevOps culture. Design, prototype, support, and evaluate security-focused tools and services. Assist with triage of findings from security tools. Develop and refine rules and checks for security automation.
Identify and understand inherent, systemic high-risk security issues that could lead to security incidents. Design, prototype, support, and validate scalable security solutions to eliminate systemic issues, including project leadership.
Run SAST/DAST tools, code signing, and code obfuscation tools.
Create processes to integrate security in the SDLC
For this role you will need a bachelor’s degree, Master’s degree preferred, (or equivalent experience) in Computer Science or related field with 5+ years of experience in security engineering or related field. You will need hands-on experience with PowerShell and Azure, Windows Hardening (NIST, STIGs) and a good understanding of threats and threat vectors.
Experience with .NET stack and other programming languages (such as C++, Python)
Experience in several of the areas:
Security design and threat modelling
Automation: from prototyping new security tools, evaluating/validating existing security tools, automation, to supporting and improving existing product security tools: SAST(Ideally Fortify), DAST(e.g. ZAP), NESSUS etc.
Systemic security issues: identifying, root cause analysis, designing security solutions
If you’re a team player who is passionate about Engineering and we’ve just described your career aspirations, then please click on the APPLY button.
Interested in a career with BD, but this position doesn’t fit your skills and experience? Join our external EMEA Talent Community here: http://bd.tal3nt.community/