Product Security Engineer
Current• Develop internal program tooling using Golang, Java, and Bash.• Create GitHub action templates for easily deploying SAST and SCA tooling in CI/CD pipelines.• Lead the secure software development training program, developing and maintaining comprehensive curriculum based on the OWASP Top 10 and tailored for thousands of developers across the enterprise to ensure adherence to secure coding practices.• Generate detailed reporting on key performance indicators (KPIs) to provide senior… Show more • Develop internal program tooling using Golang, Java, and Bash.• Create GitHub action templates for easily deploying SAST and SCA tooling in CI/CD pipelines.• Lead the secure software development training program, developing and maintaining comprehensive curriculum based on the OWASP Top 10 and tailored for thousands of developers across the enterprise to ensure adherence to secure coding practices.• Generate detailed reporting on key performance indicators (KPIs) to provide senior leadership with insights into the effectiveness and progress of secure development initiatives within the SDLC.• Advocate and enforce internal software development policies, ensuring they align with the latest industry best practices for security and compliance throughout the SDLC.• Oversee the deployment and integration of Software Composition Analysis (SCA), Static Application Security Testing (SAST), and Interactive Application Security Testing (IAST) tools within continuous integration/continuous deployment (CI/CD) pipelines to enhance security at every stage of the development lifecycle.• Provide hands-on assistance to developers across the enterprise, guiding the implementation of code security tools and ensuring seamless integration with existing development and deployment pipelines to maintain robust security postures. Show less