Lead Security Engineer
Malaysia
Sitecore
Sitecore offers an industry-leading digital experience platform that allows brands to create, build, manage, and deliver standout content along every touchpoint of the customer journey.
Lead Security Engineer About Us:More than 20 years ago, 5 friends envisioned a bold future. Over the years, we’ve kept innovating marketing technology so brands like Porsche, L’Oréal, and Proctor & Gamble can deliver memorable experiences for their customers. Sitecore has 25 offices across the globe and around 1,700 employees worldwide. Learn more at Sitecore.com. About the Role:Sitecore is looking for a Lead Security Engineer with a well-rounded skill set in security development and testing to support the Sitecore Experience Platform and Managed Cloud products. As a Lead Security Engineer, you’ll collaborate closely with the other Security Engineers in Engineering and IT Security Team across Europe and Nord America to align and optimize our security testing and secure application development. What You’ll Do:
- Drive security improvement and compliance within Sitecore Experience Platform and Managed Cloud.
- Supporting the planning, design, development, and testing of products and addressing potential security concerns around product development.
- Participating in code review practices on occasion, sharing his technical knowledge with colleagues, gradually challenging people as a mentor and giving them feedback.
- Collecting and analyzing data from security testing activities, communicating findings to the program and teams, and reporting valid and reliable information about the quality of the product to the Engineering leaders.
- Proven expertise in information security, particularly in application and cloud security.
- Experience with security frameworks such as ISO 27001/27017/27018, SOC 2, HIPAA, NIST, and CIS and strong understanding of security principles, protocols, and technologies.
- Proficiency in security tools and technologies, including firewalls, intrusion detection/prevention systems, and vulnerability scanners. (Static Code Analysis, Third Party Library Scanning, Container Security, Web Penetration Testing, etc.)
- A profound understanding of code best practices and standards for development and testing.
- Excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams.
- Relevant certifications such as OSCP, CISSP, CISM, or CEH.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Categories:
Leadership Jobs
Security Engineering Jobs
Tags: CEH CISM CISSP Cloud Code analysis Compliance Firewalls HIPAA Intrusion detection ISO 27001 NIST OSCP Pentesting SOC SOC 2
Region:
Asia/Pacific
Country:
Malaysia
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsPenetration Tester jobsSenior Cyber Security Engineer jobsSenior Cybersecurity Engineer jobsInformation Security Officer jobsInformation Systems Security Officer jobsPrincipal Security Engineer jobsCloud Security Architect jobsSenior Network Security Engineer jobsInformation System Security Officer jobsChief Information Security Officer jobsSenior Penetration Tester jobsStaff Security Engineer jobsSecurity Specialist jobsSecurity Consultant jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Information Security Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobsCybersecurity Consultant jobsSenior Information Security Engineer jobsInformation System Security Officer (ISSO) jobsThreat Intelligence Analyst jobs
SaaS jobsSDLC jobsMalware jobsEncryption jobsRMF jobsForensics jobsSQL jobsGDPR jobsIPS jobsSplunk jobsIDS jobsTop Secret jobsEDR jobsFinance jobsDoDD 8570 jobsTerraform jobsBash jobsITIL jobsOWASP jobsCRISC jobsUNIX jobsGIAC jobsCompTIA jobsDocker jobsIntrusion detection jobs
TCP/IP jobsBanking jobsSANS jobsThreat detection jobsData Analytics jobsActive Directory jobsPolygraph jobsCCSP jobsOSCP jobsClearance Required jobsVPN jobsCyber defense jobsIT infrastructure jobsSOC 2 jobsAnsible jobsJavaScript jobsSOX jobsDNS jobsSOAR jobsJira jobsGCIH jobsSecurity strategy jobsOracle jobsNIST 800-53 jobsCryptography jobs