Overview
On Site
Full Time
Skills
FOCUS
SCA
Penetration Testing
Management
Vulnerability Management
Configuration Management
Educate
Software Security
Continuous Integration
Continuous Delivery
Cadence
Jenkins
CircleCI
Software Development
C
C++
Python
Tcl
GitHub
Perforce
JFrog
Fortify
Computer Science
Information Security
Software Development Methodology
Information Systems
CISSP
Soft Skills
Analytical Skill
Conflict Resolution
Problem Solving
Communication
Collaboration
DevOps
Job Details
At Cadence, we hire and develop leaders and innovators who want to make an impact on the world of technology.
Cadence's Information Security team is seeking an experienced Sr. Software Security Engineer. This role will focus on secure software development, security by design. The security engineer will work with the Cadence development teams integrating security tool within the development environment, build, and artifactory level. As a member of the Information Security team, this role will implement and lead the secure SDLC, including DAST, SAST, SCA, penetration testing, and attack surface management.
This role will interface directly with development teams and work closely with software security architect. Of course, there is broad exposure to other aspects of information security related tasks such as vulnerability management, and deployment of security solutions. The successful candidate for this position is a highly motivated individual with a strong software security, Software Development and Configuration Management/DevOps background that wants to educate and build a software security program.
Key Responsibilities:
Required Technical Expertise:
Education:
Soft Skills:
Job Location: San Jose, CA (onsite position)
We're doing work that matters. Help us solve what others can't.
Cadence's Information Security team is seeking an experienced Sr. Software Security Engineer. This role will focus on secure software development, security by design. The security engineer will work with the Cadence development teams integrating security tool within the development environment, build, and artifactory level. As a member of the Information Security team, this role will implement and lead the secure SDLC, including DAST, SAST, SCA, penetration testing, and attack surface management.
This role will interface directly with development teams and work closely with software security architect. Of course, there is broad exposure to other aspects of information security related tasks such as vulnerability management, and deployment of security solutions. The successful candidate for this position is a highly motivated individual with a strong software security, Software Development and Configuration Management/DevOps background that wants to educate and build a software security program.
Key Responsibilities:
- Integrate security practices/solutions into SDLC
- Build and perform software composition analysis in CI/CD pipeline
- Build Cadence artifactory using JFrog or SonaType
- DevOps integration - Jenkins, GitHub Actions, CircleCI etc.
- Prioritization and Remediation of software vulnerabilities
Required Technical Expertise:
- Skills: Software development experience in C/C++; Python, TcL
- Github, Perforce experience
- Sonatype, JFrog experience
- Blackduck, Fortify, SonarQube, etc.
Education:
- Bachelor's degree in computer science, Information Security, or related field (or equivalent experience). Minimum 5 Years
- Preferred Certifications:
- (ISC)2 Certified Secure Software Lifecycle Professional (CSSLP)
- (ISC) Certified Information Systems Security Professional (CISSP)
Soft Skills:
- Strong analytical and problem-solving abilities.
- Excellent communication and collaboration skills, especially with DevOps and engineering teams.
Job Location: San Jose, CA (onsite position)
We're doing work that matters. Help us solve what others can't.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.