Some people like building things. You love both and more importantly, you love stopping bad actors from breaking the things you helped build. This job is with the software supply chain company - securing and powering how software gets delivered everywhere.
Embed security across the platform, from source to prod.
Architect security controls across distributed, cloud-native systems.
Lead threat modeling and security reviews (and get people to enjoy them)
Extend security automation and monitoring with tools like CircleCI, GitHub Actions, DataDog, AWS Security Hub, etc.
Write secure code, review other people’s code, and help everyone level up their secure coding game.
A background in software development. At your core, you’re a software engineer. Python for sure and a bit of TypeScript never hurt anyone.
Deep application security knowledge
Hands-on experience with SAST, DAST, RASP, and securing cloud (preferably AWS).
Strong grasp of container security, API security, IaC, and CI/CD.
You’ve done pen testing, threat modeling, and maybe even built some of your own security tools.
Big bonus if you’ve secured artifact systems or supply chains before.
Bigger bonus if you’ve worked with Firecracker, gVisor, or fancy things like SCA and data enclaves.
You believe security should enable, not block, engineering.
This job is remote on the Island of Ireland or in the UK. You need to be physically located here - you cannot work remotely from another country.
Work permit sponsorship is not available.