Senior Application Security Engineer, CI/CD (US Remote Avai...

Senior Application Security Engineer, CI/CD (US Remote Available)
SplunkDallas, TX30+ days ago
Join us as we pursue our disruptive new vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun and most importantly to each other’s success. Learn more about Splunk careers and how you can become a part of our journey!
Splunk’s IT-CICD team is responsible for enabling Development teams to move code faster and with less friction to production. This responsibility is supported by developing automated build and release pipelines, supporting testing frameworks, building artifact management services, and fast feedback systems. Whether it’s containers or VMs, we’re at the center of building and releasing code with our customers. The result is automated code delivery, fast time-to-market, and increased business value.
We are actively seeking an Application Security (AppSec) Engineer to join our team. You will be responsible for engaging with IT teams to ensure security is a first priority when developing services. You will also ensure we’re in lock step with Splunk’s larger security initiatives and develop our CICD security services. Engaging with other teams and communicating with stakeholders will be a regular part of the job. We’re looking for an individual who’s motivated by technology, enjoys automation, and problem-solving.
Responsibilities

  • Development of Release Management strategies for various architectures; Zero Downtime Deployments, Blue-Green, Canary Releases, etc.

  • Design and implementation of security tooling within the SDLC

  • Evangelize secure coding practices

  • Perform gap analysis with IT customers

  • Build threat models around developer code bases and releases

  • Contribute to artifact build, release, and deploy pipeline integrations

  • Act as liaison with the greater Splunk security team

  • Build application integrations with Splunk's Observability toolings such as Splunk APM

  • Container, environment, and configuration management


Requirements

  • Deep understanding of systems administration concepts

  • Solid experience with security tooling and best practices for implementation in development pipelines and infrastructure.

  • Experience with security event management, vulnerability management, intrusion detection, and threat management systems (Azure Sentinel, Splunk).

  • In depth experience with configuring continuous integration software in a globally distributed environment using tools like GitLab, CircleCi, Jenkins, A, Azure DevOps Pipelines, etc.

  • Solid experience with scripting languages such as Python, Ruby, or Golang

  • Proven expertise with container technology such as Docker, LXC, and Kubernetes

  • You have strong grasp of the SDLC

  • Solid understanding of cloud computing - AWS, GCE, Azure, etc.

  • Familiarity with progressive deployment models and developer feedback loops

  • Working knowledge of Networking concepts and their application in the cloud

  • And of course, a passion for security and release engineering!


What We Offer You: Wow, I want that.

  • A constant stream of new things for you to learn. We're always expanding into new areas, bringing in open source projects and contributing back, and exploring new technologies.

  • A set of extraordinarily hardworking, innovative, open, fun and dedicated peers, all the way from engineering and QA to product management and customer support.

  • Growth and mentorship. We believe in growing engineers through ownership and leadership opportunities. We also believe mentors help both sides of the equation.

  • A stable, collaborative and supportive work environment.


We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.
For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records.
(Colorado only*) Minimum base salary of $115,000.00. You may also be eligible for incentive pay + equity + benefits.*Note: Disclosure per sb19-085 (8-5-201 et seq).
Data Security Analyst
NTT DATA

Dallas, TX

an hour ago
Configure Varonis system for any required changes in application attribut...
Specialist Manager - Modern Work
Microsoft

Dallas, TX

3 hours ago
In the Modern Work & Security Specialists team, we are looking for passio...
Treasury Specialist
Oncor Electric Delivery

Dallas, TX

2 hours ago
Lead the department in development, execution, compliance with and improvement o...
NOC Analyst - Entry Level IT
Voxai Solutions, Inc.

Coppell, TX

4 hours ago
You, as the right candidate for this Entry Level position; should be innovative ...
Entry Level Field Service Technicians - Compensated Training
MasTec Advanced Technologies

Dallas-Fort Worth, TX

5 hours ago
They're paying $31,200 to $70,000 per year for this role. A $1000 Sign On bonus....
Guest Service Agent
Sandman Hotel Group

Plano, TX

5 hours ago
Observe and report any security issues to the Manager. High School Diplom...
Territory Manager - Video Surveillance and Telecommunications
Starcomm

Dallas-Fort Worth, TX

2 hours ago
The Territory Manager is responsible for the development and implementation of s...
Developer Experience Engineer
Stratus Data Systems

Dallas, TX

2 hours ago
Strong understanding of security best practices and their implementations...
Windows Admin (Fulltime with Day1 Onsite)
Themesoft Inc

Dallas, TX

4 hours ago
Knowledge of networking concepts/ technologies and system security. Manag...
Network Administrator
L&S Mechanical

Richardson, TX

an hour ago
Ensure network security and connectivity. Support and administer third-pa...
IT Infrastructure Engineer
G&A Partners

Dallas, TX

an hour ago
Identify additional applications/technologies that can improve business performa...
Consultant / Business Systems Analyst - Entry Level IT
Voxai Solutions, Inc.

Coppell, TX

4 hours ago
CTI - a thorough knowledge of the messaging between telephony platforms, phones ...
IT Specialist
L&S Mechanical

Richardson, TX

an hour ago
Maintain and manage Active Directory users, mailboxes, security and permi...
IT Security Supervisor
IT System Implementation

Richardson, TX

2 hours ago
Maintain comprehensive knowledge of the current security threat landscape...
Principal DevOps Engineer
Worldwide Express

Dallas, TX

an hour ago
Co-Design strategies to migrate application stacks onto our target toolse...