Product Security Specialist

Atlanta, Georgia - USA

Geotab

Our GPS fleet tracking & management system equips thousands of fleets worldwide with technology to automate, track and manage a truly optimized operation.

View all jobs at Geotab

Apply now Apply later

Who we are Geotab ® is a global leader in IoT and connected transportation and certified “Great Place to Work™.” We are a company of diverse and talented individuals who work together to help businesses grow and succeed, and increase the safety and sustainability of our communities.   Geotab is advancing security, connecting commercial vehicles to the internet and providing web-based analytics to help customers better manage their fleets. Geotab’s open platform and Geotab Marketplace ®, offering hundreds of third-party solution options, allows both small and large businesses to automate operations by integrating vehicle data with their other data assets. Processing billions of data points a day, Geotab leverages data analytics and machine learning to improve productivity, optimize fleets through the reduction of fuel consumption, enhance driver safety and achieve strong compliance to regulatory changes.   Our team is growing and we’re looking for people who follow their passion, think differently and want to make an impact. Ours is a fast paced, ever changing environment. Geotabbers accept that challenge and are willing to take on new tasks and activities - ones that may not always be described in the initial job description. Join us for a fulfilling career with opportunities to innovate, great benefits, and our fun and inclusive work culture. Reach your full potential with Geotab. To see what it’s like to be a Geotabber, check out our blog and follow us @InsideGeotab on Instagram. Join our talent network to learn more about job opportunities and company news.Who you are:

We are always looking for amazing talent who can contribute to our growth and deliver results! Geotab is seeking a Product Security Specialist who will review existing/new/proposed products with a variety of source code, dynamic and dependency scanners, manual code reviews and security-based architecture reviews as required. If you love technology, and are keen to join an industry leader — we would love to hear from you!

What you'll do:

As a Product Security Specialist your key area of responsibility will be validating scanner findings by tracing source code for a variety of code bases and provides developer level suggestions for code remediation.  You will need to work closely with technical and non technical stakeholders to evaluate results of risk assessments.

To be successful in this role you will be a self-starter with strong written and verbal communication skills, and have the ability to quickly understand complex, technical concepts. In addition, the successful candidate will be able to work well under pressure and respond to fast changing priorities and deadlines.. The successful candidate will also be highly organized and able to manage multiple tasks and projects simultaneously.

How you'll make an impact
  • Review existing/new/proposed products with a variety of source code, dynamic and dependency scanners, manual code reviews and security-based architecture reviews as required
  • Manually validates scanner findings by tracing source code for a variety of code bases (C#, .net, Java, js/ts/html, swift, kotlin, python, C, firmware) (Not all Required)  and provides developer level suggestions for code remediation.
  • Explain risk assessments at both the developer (technical) and management (Non technical) levels.
  • Write and maintain scripts/code (bash and python) to generate scan input packages, automate security scanner execution and integrate scanners with CI pipelines and Google Cloud storage and reporting mechanisms.
  • Update scanning scripts quickly, and refactor as needed.
  • Contribute to secure coding standards (involves developing secure coding training for current and future developers).
  • Perform technical writing of assessment reports and vulnerability descriptions for product owners and developers.
  • Look at the bigger picture and question whether the coverage is sufficient, and if not make recommendations to address coverage gaps.
  • Follow through to prevent things falling through the cracks. Prioritizes work that benefits the team. Escalates issues in a timely manner.
  • Support Geotab global strategic initiatives.
What you'll bring to the role
  • 3-5+ years of experience with security evaluation/analysis and security code reviews or relevant development experience
  • Bachelor’s degree in Computer Science, Information Management, Engineering or a related field
  • Security certifications highly preferred (OSCP,OSWA,OSWE)
  • Experience using source code, dynamic and dependency scanners (e.g. Veracode, Fortify, Sentinel, owasp dependency, NetSparker, Qualys etc.)
  • Knowledge of programming languages; web service technologies; dependency package managers, and how they are specified in code.
  • Able to dive deeply into convoluted or difficult code to evaluate the validity of potential vulnerabilities.
  • Competent with Linux, Windows, GCE, bash, python.

#LI-DNI

If you got this far, we hope you're feeling excited about this role! Even if you don't feel you meet every single requirement, we still encourage you to apply.   Please note: Geotab does not accept agency resumes and is not responsible for any fees related to unsolicited resumes. Please do not forward resumes to Geotab employees.   Why job seekers choose Geotab

Flex working arrangements
Home office reimbursement program
Baby bonus & parental leave top up program
Online learning and networking opportunities
Electric vehicle purchase incentive program
Competitive medical and dental benefits
Retirement savings program

*The above are offered to full-time permanent employees only

How we work At Geotab, we have adopted a flexible hybrid working model in that we have systems, functions, programs and policies in place to support both in-person and virtual work. However, you are welcomed and encouraged to come into our beautiful, safe, clean offices as often as you like. When working from home, you are required to have a reliable internet connection with at least 50mb DL/10mb UL. Virtual work is supported with cloud-based applications, collaboration tools and asynchronous working. The health and safety of employees are a top priority. We encourage work-life balance and keep the Geotab culture going strong with online social events, chat rooms and gatherings. Join us and help reshape the future of technology!   Geotab verifies candidates' eligibility to work in the United States through E-Verify, an internet-based system operated by U.S. Citizen and Immigration Services.   Other employment statements:

Geotab will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.

We are committed to accommodating people with disabilities during the recruitment and assessment processes and when people are hired. We will ensure the accessibility needs of employees with disabilities are taken into account as part of performance management, career development, training and redeployment processes. If you require accommodation at any stage of the application process or want more information about our diversity and inclusion as well as accommodation policies and practices, please contact us at careers@geotab.com. Geotab provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Geotab complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. Geotab expressly prohibits any form of workplace harassment or discrimination based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of Geotab's employees to perform their job duties may result in discipline up to and including discharge. If you would like more information about our EEO program or wish to file a complaint, please contact our EEO officer, Alex Cocq at HRCompliance@geotab.com. For more details, view a copy of the EEOC's Know Your Rights poster. By submitting a job application to Geotab Inc. or its affiliates and subsidiaries (collectively, “Geotab”), you acknowledge Geotab’s collection, use and disclosure of your personal data in accordance with our Privacy Policy. Click here to learn more about what happens with your personal data.
Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  0  0

Tags: Analytics Bash C Cloud Compliance Computer Science Data Analytics GCP IoT Java Kotlin Linux Machine Learning OSCP OSWE OWASP Privacy Product security Python Qualys Risk assessment Sentinel Veracode Vulnerabilities Windows

Perks/benefits: Career development Competitive pay Flex hours Health care Medical leave Parental leave Salary bonus Team events

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.