Software Engineer – Security & Access

Job Description:

• The Software Engineer should have prior experience with security policy, risk, and access management disciplines and be comfortable collaborating with cross-functional teams.
• This position will be responsible for identifying and enforcing solutions to control access to internal systems.
• An ideal candidate is someone that has technical knowledge of the broad aspects of information security and can identify deficiencies in the access management space.
• This role specifically needs deep conceptual understanding of the IAM concepts that can be applied to our internal IAM solutions. This role requires a broad mix of security, technical, coding and communication skills coupled with a strong desire to learn.

Responsibilities:

• Design and implement systems that enhance the security of Clients Identity & Access Management Systems.
• Build and maintain tools that improve the Identity and Access Management posture.
• Conduct design and code reviews.
• Analyze and improve efficiency, scalability, and stability for assigned product area and/or systems. Identify and drive changes as needed for assigned codebase, product area and/or systems.
• Interface with other teams to incorporate their innovations and vice versa.
• Articulate security findings to internal to a variety of stakeholders, including both technical and non-technical stakeholders.
• Provide defensible recommendations on technical, physical and administrative control implementations based on findings while balancing the cost versus benefits.
• Participate in the development and oversight of corrective actions relating to security issues.
• Participate in cross-functional, team, and status review meetings.
• Recommend process improvement and strategic initiatives as related to security.

Qualifications:

• Experience in writing custom scripts in Python/C++ and PHP/Hack.
• BS in Computer Science related field, or equivalent experience.
• Experience building large-scale distributed systems or similar experience.
• 5+ years of software development experience.
• Experience in assessing security deficiencies in first party/internal information systems and recommending mitigating controls.
• 5+ years of proven experience working on Information Security teams or conducting Information Security consulting engagements.
• Knowledge of evaluating systems architectural designs, data-flow diagrams, and technical security implementations, particularly in context of access management in different geographical locations. Experience with developing security reporting and recommendations that are meaningful, defensible, and actionable for a variety of audiences
• Ability to manage competing priorities and simultaneous projects in a fast-paced environment with little supervision.
• Strong communication skills - both written and verbal, interpersonal skills, and ability to work cross-functionally with various teams.

Typical Day-to-Day in the role:

• 1-2 weekly syncs with London team.
• 2-3 syncs with analyst and engineers’ team to discuss process.

Must-Have Skills:

• Previous experience in information security
• Prior access management experience
• Experience in writing custom scripts in Python/C++ and PHP/Hack

How many rounds of interviews? 2 one with CODERPAD