Lead Product Security Engineer - Raleigh, United States - TIBCO

Description

Do you thrive in a startup vibe? Were you built for a small, nimble and dynamic team that's ready to win? If you answered yes, we want to talk to you We are now going back to our roots as a standalone business unit to focus on our SaaS business—an area where we see growth potential. This business unit is unique, and we certainly aren't afraid to stand out from the crowd and tackle the bigger competitors. We are seeking a highly skilled and motivated Senior Manager of Security to join our dynamic team at ShareFile, a leading SaaS company operating on the AWS platform.

Are you a seasoned Lead Cloud Security Engineer passionate about ensuring the resilience of cloud environments and bolstering product security? Are you interested in guiding a team of skilled engineers and influencing the direction of cloud security and product security tooling? We're seeking a Lead Cloud Security Engineer who brings a wealth of technical expertise, from mastering AWS intricacies to enhancing container security practices, driving policy as code requirements, implementing tooling for product security, and all while thinking and working with modern software engineering practices. All this, while fostering a culture of collaboration and growth.

Role Overview:

As the Lead Cloud Security Engineer, you'll spearhead our cloud security efforts, placing emphasis on AWS proficiency, reinforcing container security protocols, enhancing API and software security measures, and integrating policy as code requirements for compliance and automation. Additionally, you'll play a crucial role in implementing and managing tooling for product security, all the while thinking and working with modern software engineering practices. Your insights into strategic security approaches will be put to the test through real-world simulations, ensuring that our cloud infrastructure remains steadfast in the face of evolving challenges. In addition, you'll lead the integration of policy as code requirements to ensure compliance and security automation. You'll also play a vital role in nurturing a team, guiding their development, and inspiring innovative problem-solving. This includes:

· Mastery of Cloud Security: Lead the development of tailored security strategies for our AWS environments, implementing robust security measures that prioritize safeguarding.

· Container Security Enhancement: Delve into the nuances of container and microservices security, strengthening the defenses of technologies like Docker and Kubernetes.

· Network Resilience: Your proficiency extends to network security, designing architectures that not only mitigate risks but anticipate them.

· Security Testing and Response: Lead simulated attack and response exercises, refining our defense mechanisms through red and blue team activities.

· API and Software Vigilance: Elevate the security of our APIs and software systems, contributing to code assessments that bolster resilience against potential vulnerabilities.

· Policy as Code Integration: Implement policy as code requirements, ensuring cloud infrastructure compliance and security automation.

· Product Security Tooling: Implement and manage tooling for product security, ensuring secure development practices across our offerings, while leveraging modern software engineering practices.

· Modern Software Engineering: Apply contemporary software engineering practices to your role, promoting efficient workflows, automation, and collaborative development.

· Team Leadership: More than just a leader, you'll serve as a mentor, fostering a culture of teamwork, inquisitiveness, and innovative problem-solving.

Your Superhero Uniform Includes:

· Educational Foundation: Armed with a Bachelor's degree in Computer Science, Information Security, or related fields. A Master's degree would undoubtedly enhance your qualifications.

· AWS Expertise: Your mastery of AWS is evident through a history of successfully securing cloud environments.

· Container Acumen: Immerse yourself in container technology; your grasp of Docker, Kubernetes, and container security is unwavering.

· Network Insight: Your expertise extends to networking protocols, architecture, and security principles.

· Incident Handling: Navigate through security incidents adeptly, honed through your involvement in red and blue team engagements.

Your Superhero Strengths Include:

· API and Software Focus: Your skill in assessing API and software security ensures that code reviews adhere to security standards.

· Policy as Code Experience: Familiarity with implementing policy as code requirements using tools such as Terraform or CloudFormation.

· Product Security Tooling: Experience with implementing and managing tools for product security, enabling secure development practices.

· Modern Software Engineering Skills: Proficiency in leveraging modern software engineering practices, fostering efficient development and collaboration.

· Leadership Experience: You possess a history of leading and mentoring security engineering teams, ideally supported by certifications like AWS Certified Security - Specialty and CISSP.

If you are a dedicated and experienced security professional with a passion for leading security initiatives in a fast-paced SaaS environment with a focus on automation, infrastructure, and policy as code methodologies, we encourage you to apply. Join our team and help us ensure the security, compliance, and privacy of our cutting-edge cloud-based services

About Us:

Citrix and TIBCO recently merged to create Cloud Software Group, now one of the world's largest cloud solution providers, serving more than 100 million users around the globe. When you join Cloud Software Group, you are making a difference for real people, each of whom count on our suite of cloud-based products to get work done — from anywhere. Members of our team will tell you that we value diverse lived experiences, passion for technology, and the courage to take risks. Everyone is empowered to learn, dream, and build the future of work. We are on the brink of another Cambrian leap -- a moment of immense evolution and growth. And we need your expertise and experience to do it. Now is the perfect time to move your skills to the cloud.

Cloud Software Group is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all federal, state and local laws that prohibit employment discrimination. All qualified applicants will receive consideration for employment without regard to age, race, color, creed, sex or gender, sexual orientation, gender identity, gender expression, ethnicity, national origin, ancestry, citizenship, religion, genetic carrier status, disability, pregnancy, childbirth or related medical conditions (including lactation status), marital status, military service, protected veteran status, political activity or affiliation, taking or requesting statutorily protected leave and other protected classifications.

If you need a reasonable accommodation due to a disability during any part of the application process, please contact us at or email us at for assistance.