Job Description

Dell Boomi Senior Principal Security Engineer - DevSecOps (Virtual/Remote)

Are you ready to work on world changing technologies? Today, organizations need to move with increased agility and insight to grow and thrive. Dell Boomi is one of the hottest tech companies in the SaaS/Cloud industry, named a front runner for the sixth year in a row in the Gartner Enterprise iPaaS Magic Quadrant and recently recognized by Inc. Magazine as one of the best workplaces. Our award-winning, patented technology is transforming the world of integration by making enterprise-class integration technology accessible and affordable to companies of all sizes.

Working at Dell Boomi means doing what you love. We hire trailblazers with an entrepreneurial spirit who can solve difficult problems, make a real impact in technology and want to build something big. If you are passionate about solving hard problems, enjoy working with world-class people and developing cutting edge technology, you should explore a career with Boomi. Learn more at http://www.boomi.com/ or visit Boomi Careers.

The Software Engineering team delivers next-generation application enhancements and new products for a changing world. Working at the cutting edge, we design and develop software for platforms, peripherals, applications and diagnostics all with the most advanced technologies, tools, software engineering methodologies and the collaboration of internal and external partners.

Join us as a Senior Principal Security Engineer - DevSecOps on our Engineering Development team to do the best work of your career and make a profound social impact.

ACCOUNTABILITIES

* Attention to Security by design (technical, organization and physical) from the context of robust of design/build/implement data security safeguards. Likewise, attention to privacy by design and privacy impact on our products.

* Works on cybersecurity problems that may be diverse and highly complex, with particular emphasis on security operations.

* Selects methods and techniques for identifying and advocating effective security solutions.

* Specializes in security operations in one or more areas, including Cloud based Infrastructure, network, host, database, application, event management, cloud, cryptography, identity, and other emerging technology.

* Specializes in TVM solutions, Periodic Security Scans, working with CICD Tooling to implement release gates for security scans, 3rd party API compliance, SAST etc.

* Participates in 3rd Party Compliance initiatives like Fed Ramp, PCI etc. and provides documentation and audit support.

* Participates in reviews of available tools, technologies, and processes to secure all aspects the enterprise.

* Maintains and optimizes tools, processes, documentation, reporting, and technologies, and defines success criteria for their effective usage.

* Deploys tools, processes, documentation, and technologies, and defines success criteria for their effective usage.

* Core competencies include strong understanding and application of NIST Security and Privacy Frameworks as a minimum.

RESPONSIBILITIES

* Collaborate with Legal, Privacy, and Security stakeholders with-in and across the organization to ensure global adoption of security initiatives.

* Manages Threat and Vulnerability vectors across the entire Production Engineering organization, including internal and customer facing deployments.

* Ensures scheduled security / SAST / SCA and other scans are integrated in to the CICD framework, proactive analysis of the scan results and coordinating the remediation efforts with various Engineering organizations.

* Mentors and Promotes security best practices across the organization, targeted at all phases of Cloud Services development and deployment lifecycle.

* Selects methods and techniques for identifying and advocating effective security solutions.

* Maintains and optimizes tools, processes, documentation, reporting, and technologies, and defines success criteria for their effective usage.

* Participates in reviews of available tools, technologies, and processes to secure all aspects the enterprise.

* Care in creating business communications in this highly regulated space

Essential Requirements:

* Hands-on Cybersecurity Operations experience with Cloud Technology providers, preferably in Lead roles, keeping abreast with Industry standards in cybersecurity and open vulnerabilities.

* Experience with various scanning tools and implementations including but not limited to Checkmarx, sonarQube, ScoutSuite, BlackDuck, Nessus, Qualys is highly desired.

* Exposure to various 3rd party certification frameworks such as FedRAMP, PCI, SOC 1/2, HIPPA, GDPR is highly desired.

Desirable Requirements

* 10 to 15 years of related experience

* CISM / CISA / CISSP certifications

Heres our story; now tell us yours

Dell Technologies helps organizations and individuals build a brighter digital tomorrow. Our company is made up of more than 150,000 people, located in over 180 locations around the world. Were proud to be a diverse and inclusive team and have an endless passion for our mission to drive human progress.

Whats most important to us is that you are respected, feel like you can be yourself and have the opportunity to do the best work of your life -- while still having a life. We offer excellent benefits, bonus programs, flexible work arrangements, a variety of career development opportunities, employee resource groups, and much more.

We started with computers, but we didnt stop there. We are helping customers move into the future with multi-cloud, AI and machine learning through the most innovative technology and services portfolio for the data era. Join us and become a part of whats next in technology, starting today.

You can also learn more about us by reading our latest Diversity and Inclusion Report and our plan to make the world a better place by 2030 here.

Dell is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Dell are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Dell will not tolerate discrimination or harassment based on any of these characteristics. Dell encourages applicants of all ages. Read the full Equal Employment Opportunity Policy here.