DevSecOps Engineer
Company Overview
At Motorola Solutions, we create technologies our customers refer to as their lifeline. Our technology platforms in communications, software, video and services help our customers work safely and more efficiently. Whether it’s helping firefighters see through smoke, enabling police officers to see around street corners, or reliably keeping the lights on in homes and businesses around the world, our work supports those who put their lives on the line to keep us safe. Bring your passion, potential and talents to Motorola Solutions, and help us usher in a new era in public safety and security.
Department Overview
As part of the product Application Security Architecture team, you will have the opportunity to use your application security skills to protect the people that protect us. You’ll work on driving and refining the appsec strategy across all of Motorola Solution’s mission critical products and services.
Job Description
This is your opportunity to use your application security skills to protect the people that protect us. We are looking for an individual that is passionate - not just about cybersecurity - but about our mission to protect public safety and first responders. You should be passionate about constantly learning, researching and building solutions to difficult problems. The Application Security Architecture team is responsible for developing the entire application security strategy across Motorola Solutions, including tooling, SDLC, guidelines and standards. You will be working closely with engineering teams to understand their technology stacks, pipelines, frameworks and products and create seamless solutions to integrate security testing and metrics.
If you are passionate about cloud infrastructure, DevOps and security and want to help solve important problems at scale in a high stakes environment, this role is for you. If you are a developer or operations engineer with a strong passion and interest in security, this role is for you. If you are a security consultant or penetration tester, but want to help build and defend solutions against the attacks you’ve normally performed, this role is for you! Some of your responsibilities will include:
Integrating automated security tests via various tools into CI/CD pipelines
Leveraging cloud infrastructure and APIs to help gain visibility and oversight of our security posture
Investigating and POCing commercial and open-source application security tools
Developing various automation scripts, plugins and dashboards to enable application security oversight at scale
Performing research and documenting best practices on securing and implementing various technologies as we adopt them
Understanding threat models and providing actionable application security recommendations and tools for various types of applications: web, mobile, embedded, etc
- Performing targeted penetration tests to assist in detection and remediation validation of vulnerabilities
The applicant should also have experience with the following:
Strong familiarity with application security concepts (e.g. OWASP Top 10)
Experience with or knowledge of security testing tools such as SAST or DAST
Strongly proficient in at least one scripting language
Cursory understanding of various programming languages (i.e. ability to figure out what’s going on by looking at code snippets)
Strong ability to learn and research new things, including tools, languages, frameworks, etc.
Strong communication skills and the ability to present security concepts to non-technical audiences
Familiarity with DevOps practices, including CI/CD pipelines and tools (e.g. Jenkins)
Familiarity with containers and orchestration, esp. Kubernetes
Familiarity with cloud security concepts, esp. Azure
This is your opportunity to help shape the application security landscape for products that directly impact people’s lives, every single day.
Basic Requirements
Bachelor’s Degree
- Must have at least 3 years experience in either development, operations or security
Travel Requirements
Under 10%
Relocation Provided
None
Position Type
Experienced
Referral Payment Plan
No
EEO Statement
Motorola Solutions is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran's status, or, any other protected characteristic.