Senior Product Security Engineer – Automation
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior Product Security Engineer at Red Hat developing automation tools for security processes. Collaborating with teams to enhance security capabilities across products, addressing new risks and vulnerabilities.
Responsibilities:
- Lead the design, development, and maintenance of automation for critical product security processes.
- Expand the capabilities of our existing scanning infrastructure (SAST, DAST, etc.) to cover new products, new languages, and emerging types of risk.
- Build and integrate security tools into our CI/CD pipelines to provide continuous feedback to engineers and proactively mitigate risks.
- Collaborate with other Product Security engineers and product teams to understand their needs and build robust, scalable solutions that make their work more efficient and effective.
- Serve as a subject matter expert on security automation and tooling, guiding other engineers and helping to shape our technical strategy.
- Proactively identify new opportunities for automation to reduce manual effort, improve security coverage, and secure our software supply chain.
- Work with upstream open source communities to contribute to, and leverage, new and existing security tooling.
- Document the automation you build to ensure it is maintainable, well-understood, and usable by the wider team.
Requirements:
- Practical experience in building and maintaining automation, preferably for security functions.
- A solid understanding of one or more scripting or programming languages (like Python, Go, or Bash).
- Familiarity with CI/CD principles and tools.
- Experience with Tekton or Ansible Automation Platform is a significant plus.
- A good understanding of Linux fundamentals and how to operate in a Linux-based environment.
- Knowledge of container technologies (like Docker, Kubernetes, or Red Hat OpenShift) and their security considerations.
- Familiarity with security scanning tools and concepts (SAST, DAST, vulnerability scanning, etc.).
- Experience using AI-powered tools (like code assistants or analysis tools) to improve your workflow is a plus.
- The ability to work independently, manage your own tasks, and provide technical guidance to more junior team members.
Benefits:
- Health insurance
- 401(k) matching
- Flexible work hours
- Paid time off
- Professional development opportunities
Similar Jobs
AI Security & Controls Lead
AI Security & Controls Lead enabling secure AI adoption and evaluating AI-specific security controls. Collaborating with engineering and information security to manage AI risks effectively.
Detection & Response, Security Engineer
Detection & Response Security Engineer at WorkOS building detection logic and improving incident response capabilities. Collaborating with the security team to drive threat detection and operational maturity.
Senior Project Consultant – Security
Senior Project Consultant delivering Microsoft security solutions for mid-market and enterprise clients. Leading technical execution for identity-centric security and compliance projects with a customer-centric approach.
Senior Cyber Security Engineer
Senior Cyber Security Engineer for GE Vernova's Wind portfolio, leading cybersecurity initiatives and vulnerability assessments. Collaborating on designs and audits to enhance product security posture.
Product Security Engineer
Product Security Engineer focusing on secure development and security testing at WorkOS. Collaborating with engineering teams to protect users' data and identities.
Senior Cybersecurity Manager – Offensive Security
Leading offensive security capabilities at Home Depot, driving operational excellence across threat intelligence and investigations. Mentoring teams and establishing strategic roadmaps for cybersecurity objectives.
Security Guard
Unarmed Security Guard conducting patrols and monitoring access at cemetery grounds in Dixon, CA. Ensuring safety and security during funeral services and special events.
Cyber Security Specialist, CMMC Compliance
Cyber Security Specialist focusing on achieving CMMC 2.0 compliance in aerospace & defense. Leading security efforts and managing compliance documentation across IT and OT environments.
Information Security Engineer
Information Security Engineer safeguarding systems in a dynamic financial-services environment. Collaborating with cross-functional teams to improve security and compliance efforts.
Project Manager – Compliance Security Assessments
Project Manager driving compliance and security assessments for technology enterprises. Collaborating with cross-functional teams in managing security compliance and project execution.
Information Security Engineer – Endpoint Security Engineering
Information Security Engineer handling endpoint security within global operations. Leading remediation processes and collaborating with IT security tooling to ensure global endpoint security health.
Cybersecurity Threat and Preparedness Expert
Cybersecurity Threat and Preparedness Expert role at TDI focusing on evaluating cybersecurity preparedness and response strategies through hypothetical incident scenarios.
Ingeniero en Ciberseguridad Senior
Senior Cybersecurity Engineer supporting software projects in a challenging environment for financial sector clients. Requires deep knowledge in cybersecurity management and agile methodologies.
Security Specialist
Security Specialist responsible for monitoring transactions and investigating suspicious activities for CoinPoker's innovative crypto-poker platform. Collaborating with teams to ensure compliance and integrity of operations.
Senior Information Security Engineer – Endpoint Security Engineering
Senior Information Security Engineer focusing on endpoint security engineering at JLL. Developing processes for agent health and leading remediation activities to enhance cybersecurity.
Senior Application Security Architect
Designing and assessing security solutions in software projects. Collaborating with teams to ensure security is integral to the development lifecycle at WEX.
Research Assistant – Software Security, Program Analysis
Research Assistant in Software Security at Fraunhofer Institute, focusing on applied research projects in software security. Collaborating with academic and industry partners to enhance software security methods.
Director, Information and Cybersecurity
Director leading Information Security and cybersecurity initiatives for Office Depot. Responsible for policy development and team management in a global IT environment.
Analista Junior de Seguridad de la Información
Junior Information Security Analyst monitoring alerts and managing vulnerabilities in a structured environment. Engaging in practical experience and enhancing technical foundations remotely.
Senior Security Consultant
Microsoft Senior Security Consultant responsible for implementing Microsoft's security solutions for clients. Working with clients to design and integrate threat protection and compliance solutions.