Security Engineer, Platform & Tooling

Position Overview: The Security Engineer, Platform & Tooling owns the shared automation backbone that serves both security- operations teams (Red, Blue, Purple) and the product SDLC. The mandate is twofold: - Eliminate operational toil by building reliable pipelines for scans, telemetry, and evidence management. - Embed security into DevOps workflows (DevSecOps) so vulnerabilities are identified and remediated early. Responsibilities: CI/CD & DevSecOps Automation - Integrate SAST (Semgrep), DAST (ZAP, Burp), and SCA scanners into GitHub/GitLab pipelines. - Enforce IaC and container-image checks (Terraform, CloudFormation, Dockerfile linters). - Publish build-stage security metrics (OWASP risk tags, pass/fail gates) to engineering dashboards. Offensive & Defensive Tooling - Orchestrate bulk scans (ZAP, Nuclei, Semgrep) outside the SDLC for red-team engagements. - Parse SARIF/JSON outputs and route findings to DefectDojo and Jira with de-duplication logic. Telemetry Ingestion & SIEM/XDR Pipelines - Maintain schemas, enrichment, and data-quality checks for Windows/M365, AWS, and Azure logs. - Monitor pipeline health via automated SLIs/SLOs; trigger self-healing routines where feasible. Reusable Artefact Curation - Standardise Nuclei templates, Burp/ZAP add-ons, Sigma rules, and threat-hunt notebooks. - Version and distribute through an internal registry; provide CLI tooling for one-command deployment. Lab & Sandbox Infrastructure - Operate disposable AD forests, cloud sandboxes, and target containers for red/purple exercises. - Provide “one-click” Terraform/Ansible scripts that bootstrap environments in < 15 minutes. Process Optimisation & Practitioner UX - Conduct quarterly time-motion studies to locate manual pain points. - Produce concise documentation and in-tool help to maximise adoption by security analysts and developers. Metrics & Continuous Improvement - Report KPIs (see below) to leadership; maintain a roadmap aligned with both Ops and SDLC priorities. Requirements: - Programming: Advanced proficiency in Python or Go for pipeline tooling and API integrations. - CI/CD & DevOps: Demonstrable experience with Jenkins, GitHub Actions, GitLab CI, or Azure DevOps; familiarity with GitOps patterns. - Security Scanners & Formats: Hands-on with ZAP, Semgrep, Nuclei, SARIF/JSON, CycloneDX, SBOMs. - Container & Cloud: Docker/Kubernetes, plus AWS or Azure deployment experience; image-hardening and runtime-security controls. - Data Engineering: Log parsing, schema mapping, and streaming (Kafka, Kinesis, or equivalent). - IaC & Configuration Management: Terraform, CloudFormation, Ansible, or similar. - Collaboration: Proven record of working with both software-engineering squads and security-operations teams, translating requirements into intuitive tooling. - Strong proficiency in both written and spoken English. - Adaptability to thrive in dynamic, fast-paced environments and remote work settings. - Effective team player with excellent collaboration and interpersonal skills. - Ability to perform under pressure with a positive attitude and a focus on team success. - Demonstrates high levels of responsibility, reliability, and accountability. - Willingness and ability to travel internationally when required. Nice-to-Haves - Experience with implementing OWASP DSOMM - GIAC Cloud Security Automation (GCSA) - HashiCorp Certified: Terraform Associate - Certified Kubernetes Administrator (CKA) - DevOps or DevSecOps-specific certifications (e.g., DSOE, CDP) What we offer: - Competitive Compensation: Enjoy a salary package tailored to your skills and experience - Comprehensive leave package - Top-Tier Equipment: Stay productive with the latest tools, including a MacBook and iPhone. - Thriving Culture: Immerse yourself in a dynamic, inclusive work environment that fosters growth. Pay: From AED10,000.00 per month Education: * Bachelor's (Preferred) Experience: * Programming in Python : 5 years (Preferred) * Go: 4 years (Preferred) * API integrations: 5 years (Preferred) * CI/CD: 5 years (Preferred) * DevOps: 5 years (Preferred) * Security Scanners ZAP, Semgrep, Nuclei (must be hands-on): 5 years (Preferred) * AWS or Azure : 4 years (Preferred) * IaC & Configuration Management: Terraform, CloudFormation: 5 years (Preferred) Work Location: In person