Security Architect

Job Description

JOB DESCRIPTION

Fortinet is developing cloud-enabled services that perform continuous application security testing through an intensive process of comprehensive and criteria based automated static, dynamic scanning and analysis.

The Security Architect / Researcher will be part of this exciting development and will be working with a strong product and technical team of worldwide security experts.

The successful candidate should meet our job requirements. This individual is someone who is passionate about web application and code security.

The candidate will be reporting to Product management, which would allow him to define the strategy and the direction of the product, but also work closely with the development in many of the implementation details of these scanners.

RESPONSIBILITIES

  1. Perform research and overall product direction on static, dynamic analysis, SCA, containers, IaS and many other types of security scanners – select, configure and optimize their setup to provide best coverage.
  2. Understand and translate analysis scanner output to comprehensive messages to be displayed to end user.
  3. Process analysis scanner data automatically to minimize user interaction.
  4. Able to design, implement, and maintain automated translation scripts.
  5. Perform research and understand different type of software vulnerabilities in different popular web programming frameworks and able to translate them into detection patterns.
  6. Develop exploit signature in proprietary description language.
  7. Understand come up with risk rating methodologies

REQUIREMENTS

  1. At least 10 years of relevant working experiences.
  2. Expertise in Application Security Scanning– SAST, DAST, SCA/OSS, container, IAC scanners, etc.
  3. Very good understanding of the AppSec space and the different products in this space, and their comparative analysis.
  4. Understanding of DevOps tools like CI/CD, Docker, etc.
  5. Experience writing code in any of C/C++, Golang, JavaScript, Python, Perl languages.
  6. Outstanding verbal, written communication and presentation skills.
  7. Proven analytical and problem-solving skills.
  8. Must be self-motivated, innovative, hands-on and a good team player.
  9. Strong will to learn new things and passion to explore new ideas.

EDUCATION

  1. Bachelor or Master of Computer Science or Electrical/Computer Engineering

Business Justification

  • The team requires someone with the right technical security skills and knowledge that is able to select the right kind of scanners we need to use, configure these scanners, understand common type of software vulnerabilities and then translate these vulnerability descriptions into understandable verbiage and detection patterns used by FortiDevSec.
  • The candidate should have a high-level understanding of the different types of application security scans, different products in this space, and their comparative analysis.

#LI-KD1
#GD

About Us

Fortinet (NASDAQ: FTNT) secures the largest enterprise, service provider, and government organizations around the world. Fortinet empowers its customers with intelligent, seamless protection across the expanding attack surface and the power to take on ever-increasing performance requirements of the borderless network – today and into the future. Only the Fortinet Security Fabric architecture can deliver security features without compromise to address the most critical security challenges, whether in networked, application, cloud or mobile environments. Fortinet ranks number one in the most security appliances shipped worldwide and more than 450,000 customers trust Fortinet to protect their businesses.
We are committed to providing reasonable accommodations for all qualified individuals with disabilities. If you require assistance or accommodation due to a disability, please contact us at accommadations@fortinet.com.
Fortinet is an equal opportunity employer. We value diversity in our company, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.
Job Identification : 6658

More Information

Apply for this job

Leave your thoughts

Share this job