Product Applications Security Engineer

March 26

Apply Now

Receive Emails with Similar Jobs

Sophos

WebsiteLinkedInAll Job Openings

Sophos is a leading cybersecurity company that specializes in protecting businesses against advanced cyber threats. The company offers a comprehensive suite of security solutions, including endpoint protection, managed detection and response (MDR), network security, and cloud security. With a prevention-first approach, Sophos aims to stop ransomware and other cyber threats before they cause harm. Sophos provides services such as threat research, security training, and operational support to ensure robust defense against cyberattacks. Their solutions cater to various industries including finance, healthcare, government, manufacturing, and retail. The Sophos Central platform delivers centralized security management, integrating seamlessly with existing IT infrastructure to enhance security posture.

IT Security • Next-Gen UTM (Unified Threat Management) • Mobile Device Management • Endpoint Security • Antivirus

1001 - 5000 employees

Founded 1985

🔒 Cybersecurity

☁️ SaaS

💰 Post-IPO Equity on 2021-08

📋 Description

• Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. • Sophos is seeking an experienced Product / Applications Security Engineer to join its Cybersecurity Architecture team and bolster our ability to build world-class products capable of tackling emerging threats. • The successful candidate will bring a wealth of experience in consulting and securing a wide array of technologies. • Sophos is an early adopter of emerging technologies and engineering practices. • The candidate will need to exhibit creativity and have a proactive approach to working directly with engineers to help design solutions that are appropriate for modern applications.

🎯 Requirements

• 5+ years of experience in cybersecurity, with specific experience of holding a similar role. • Demonstrable experience of securing services primarily built on AWS and Azure • A pragmatic approach to securing products leveraging different technologies, facing different threat profiles. • Strong knowledge of application security and common web application vulnerabilities (e.g., OWASP Top 10) and have experience with secure coding practices. • A background in a software or cloud engineering role is preferable, but not required. • A willingness to work directly with engineers and an appetite to understand the technical details of their projects. • Proficiency and understand of working with NIST, SSDF, ASVS and other cybersecurity frameworks. • Knowledge of cryptographic techniques and implementations. • Familiarity with security tooling which is used to support a SSDLC (SCA/SAST/DAST/container scanning) • A strong desire to stay current and understand emerging technologies and risks. • Strong project management skills to drive and oversee the implementation of security initiatives.

🏖️ Benefits

• Sophos operates a remote-first working model, making remote work the primary option for most employees. • Our people – we innovate and create, all of which are accompanied by a great sense of fun and team spirit • Employee-led diversity and inclusion networks that build community and provide education and advocacy • Annual charity and fundraising initiatives and volunteer days for employees to support local communities • Global employee sustainability initiatives to reduce our environmental footprint • Global fitness and trivia competitions to keep our bodies and minds sharp • Global wellbeing days for employees to relax and recharge • Monthly wellbeing webinars and training to support employee health and wellbeing