Security Engineer – Platform & Tooling
AGAPI
Description
About the Role:
We are seeking a highly skilled Senior Security Engineer – Platform & Tooling to design, build, and maintain the automation platforms and shared services that support our Security Operations and secure software development lifecycle. This role is responsible for enabling Red, Blue, and Purple Teams through scalable tooling, automation, telemetry pipelines, and security engineering practices. The successful candidate will play a key role in embedding security into development workflows, reducing operational overhead, and improving the efficiency and effectiveness of security programs across the organization.
Key Responsibilities:
CI/CD and DevSecOps Automation
- Integrate static, dynamic, and software composition analysis (SCA) security scanners into CI/CD pipelines.
- Implement infrastructure-as-code and container security checks across development and deployment workflows.
- Establish and maintain security gates, risk classifications, and automated reporting throughout the software development lifecycle.
- Drive the adoption of DevSecOps best practices across engineering teams.
Telemetry Ingestion and Security Data Pipelines
- Build and maintain scalable telemetry ingestion pipelines supporting SIEM and XDR platforms.
- Develop and maintain log schemas, enrichments, and quality assurance processes for cloud and enterprise platforms, including AWS, Azure, Microsoft 365, and Windows environments.
- Monitor pipeline health using service-level indicators (SLIs) and service-level objectives (SLOs), implementing automated remediation where appropriate.
Security Tooling and Automation
- Develop security automation solutions using Python or Go.
- Orchestrate large-scale security assessments and scanning activities.
- Process scan outputs and automate the routing of findings into vulnerability management and tracking platforms.
- Build integrations across security, development, and operational systems using APIs and automation frameworks.
Reusable Security Artifacts and Practitioner Enablement
- Create and maintain reusable templates, testing frameworks, detection rules, and threat hunting artifacts.
- Standardize and distribute security tooling through internal repositories and registries.
- Produce documentation and self-service tooling that improves usability and adoption by security practitioners and engineering teams.
Lab and Sandbox Infrastructure
- Design, deploy, and maintain isolated testing environments for Red Team, Purple Team, and security validation activities.
- Automate the provisioning of cloud, Active Directory, and containerized environments using Infrastructure-as-Code and configuration management frameworks.
Process Optimization and Collaboration
- Identify opportunities to eliminate manual processes and improve operational efficiency.
- Collaborate closely with software engineering, cloud, DevOps, and security operations teams to deliver scalable security solutions.
- Translate complex security requirements into practical, user-friendly tools and workflows.
Required Qualifications:
- Strong proficiency in Python or Go, with experience developing automation, integrations, and security tooling.
- Hands-on experience implementing DevSecOps practices and integrating security controls into CI/CD platforms such as GitHub Actions, GitLab CI, Jenkins, or Azure DevOps.
- Strong understanding of application security testing, including SAST, DAST, and vulnerability management using tools such as OWASP ZAP, Semgrep, Nuclei, or equivalent.
- Experience securing and deploying cloud-native workloads using Docker, Kubernetes, and AWS and/or Azure.
- Experience with Infrastructure-as-Code and automation frameworks such as Terraform, CloudFormation, or Ansible.
- Proven ability to collaborate effectively with both software engineering and security operations teams to deliver scalable security solution