Do you thrive in a startup vibe? Were you built for a small, nimble and dynamic team that’s ready to win? If you answered yes, we want to talk to you! We are now going back to our roots as a standalone business unit to focus on our SaaS business—an area where we see growth potential. This business unit is unique, and we certainly aren’t afraid to stand out from the crowd and tackle the bigger competitors. As a Senior Product Security Engineer at ShareFile you will help build a culture of security through code and policy enforcement from code. We are looking to build a next generation Security function, power a startup like business with a global cloud footprint. We want to enable our engineers to deliver products safely to our customers. This is a highly critical space that is pivotal for the business to safely accelerate our engineering and product innovation and delivery to our customers.

Role Overview:

Now, let’s get to the details. This role will be part of a wider Horizontal Services team responsible for our Platforms, SDLC, identity and security practices. You'll get a seat at the table as we design our solutions to enable our wider engineering and product organization, making sure we automate our way through security and policy. We want you to be an expert and help both protect our cloud estate and our teams to secure product we develop. You'll be part of our emerging Horizontal team in Bangalore, working closely with the engineering teams locally and working with your peers across the global security team.

Strategy:

• Design, implement, and manage AWS-based solutions that integrate security measures through policy as code.

• Collaborate with development and operations teams across the globe to embed security practices into the software development lifecycle.

• Develop and maintain infrastructure as code (IaC) templates using tools like AWS CloudFormation or Terraform to enforce security policies, driven via CI/CD practices

• Create and maintain security policies as code using frameworks like AWS CloudFormation Guard, Open Policy Agent (OPA), or similar tools.

• Implement and automate security controls, such as identity and access management (IAM), encryption, network security, and compliance auditing.

• Monitor and respond to security incidents, vulnerabilities, and threats in the AWS environment.

• Perform security assessments, code reviews, and penetration testing to identify and remediate vulnerabilities.

• Research and stay up-to-date with the latest AWS security best practices, tools, and technologies.

• Mentor and guide junior members of the DevSecOps team, promoting knowledge sharing and skill development.

• Incremental Delivery: Continuously deliver value to our internal customers through frequent releases of meaningful improvements to our systems.

Your Superhero Uniform Includes:

• Bachelors/Masters in Computer Scient or equivalent field with 5+ years of experience in software development.

• At least 3 years of experience in as a DevSecOps Engineer or similar role, with a focus on AWS.

• Strong understanding of AWS services, architecture, and security best practices.

• Proficiency in implementing security measures using policy as code tools and frameworks.

• Experience with IaC tools such as AWS CloudFormation, Terraform, etc.

• Familiarity with scripting languages (e.g., Python, Bash) for automation tasks.

• Knowledge of industry security standards (e.g., ISO 27001, NIST) and regulatory requirements.

• Experience in designing and implementing automated testing procedures for security controls within the AWS environment.

• Demonstrated ability to create automated remediation processes based on testing outcomes.

• Excellent problem-solving skills and the ability to work effectively in a fast-paced, collaborative environment.

• Strong communication skills to interact with cross-functional teams across different time zones and articulate security concepts.

• Experience with security testing and remediation frameworks.

Your Superhero Strengths Include:

• Relevant AWS certifications (e.g., AWS Certified DevOps Engineer, AWS Certified Security Specialty) would be a plus.

• Experience with Tools such as Wiz and Harness, is a significant plus.

About Us:

Citrix and TIBCO recently merged to create Cloud Software Group, now one of the world’s largest cloud solution providers, serving more than 100 million users around the globe. When you join Cloud Software Group, you are making a difference for real people, each of whom count on our suite of cloud-based products to get work done — from anywhere. Members of our team will tell you that we value diverse lived experiences, passion for technology, and the courage to take risks.  Everyone is empowered to learn, dream, and build the future of work. We are on the brink of another Cambrian leap -- a moment of immense evolution and growth. And we need your expertise and experience to do it. Now is the perfect time to move your skills to the cloud.

Cloud Software Group is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all federal, state and local laws that prohibit employment discrimination. All qualified applicants will receive consideration for employment without regard to age, race, color, creed, sex or gender, sexual orientation, gender identity, gender expression, ethnicity, national origin, ancestry, citizenship, religion, genetic carrier status, disability, pregnancy, childbirth or related medical conditions (including lactation status), marital status, military service, protected veteran status, political activity or affiliation, taking or requesting statutorily protected leave and other protected classifications.

If you need a reasonable accommodation due to a disability during any part of the application process,  please contact us at (800) 424-8749 or email us at AskHR@cloud.com for assistance.