GlobalLogic · 16 hours ago
Cyber Security Engineer – DevSecOps IRC286484
Dallas, TX
Full-time
Onsite
Mid, Senior Level
$120K/yr - $130K/yrGlobalLogic is a trusted digital engineering partner to the world’s largest and most forward-thinking companies. They are seeking a Cyber Security Engineer specializing in DevSecOps to enhance security measures and implement comprehensive security solutions across various platforms. The role involves conducting security assessments, developing threat models, and automating security testing functions.
Developer PlatformInformation TechnologyProduct DesignSoftware
Responsibilities
Conduct comprehensive analysis of security data from microservice architectures, content distribution networks, data lakes, serverless functions, and databases
Use SIEM tools to correlate security events and identify anomalies
Participate in incident response efforts, perform root cause analysis, and implement or suggest corrective actions to mitigate security breaches. Develop and maintain incident response playbooks
Assess and mitigate security risks associated with the supply chain, like open source libraries, ensuring end-to-end security
Identify and address software security flaws and misconfigurations to enhance overall security posture
Perform code reviews and static/dynamic analysis. Languages include but not limited to Python, C++, C#, JS, Python, HCL
Develop and implement custom security solutions, minimizing reliance on paid services. Create security automation scripts and integrate security tools into CI/CD pipelines
Develop and implement automated dynamic security testing functions to ensure continuous security validation
Develop and maintain comprehensive threat models across embedded platforms, cloud services, and software applications to proactively identify, prioritize, and mitigate potential vulnerabilities throughout the system development lifecycle
Conduct regular penetration tests and security assessments of embedded platforms to proactively identify and remediate vulnerabilities unique to embedded systems and hardware integration
Conduct regular penetration tests and security assessments on cloud-hosted applications to proactively identify and remediate vulnerabilities unique to embedded systems and hardware integration
Conduct regular adversarial testing and red-teaming exercises focused on AI-powered services and machine learning models. Proactively identify and exploit potential vulnerabilities unique to AI systems and collaborate with legal and engineering teams to remediate security risks specific to AI and automated decision-making capabilities
Utilize advanced security tools like Cloud Security Posture Management platforms, open-source pen-testing tools, SIEMs, and SASTs to identify, analyze, validate, and stop vulnerabilities from entering the environment. Perform regular penetration testing and vulnerability assessments
Qualification
Required
Expertise in secure API integration design and implementation
Expertise in the OWASP top 10 for web applications, and LLMs, along with mitigation and remediation techniques
Extensive experience in cybersecurity within software engineering environments
Experience with a programming language (C/C++, Python, Go, JavaScript / TypeScript, Rust)
Proficiency in cloud security, threat detection, data analysis, and incident response
Expertise with security tools such as BurpSuite, PyRIT, Garak, MitM, Metasploit, Wireshark, Wiz, Sonarqube
Experience standing up Security tooling to automate security hygiene, analysis, reporting or otherwise host tools or enhance intel capabilities
Strong technical knowledge of microservice architecture, content distribution networks, data lakes, serverless functions, and databases
Familiarity with various cloud platforms and DevOps tools
Excellent analytical and problem-solving skills
Strong communication skills, both written and verbal
Ability to independently develop and implement security solutions
Experience in developing and implementing automated security testing functions
Conduct comprehensive analysis of security data from microservice architectures, content distribution networks, data lakes, serverless functions, and databases
Use SIEM tools to correlate security events and identify anomalies
Participate in incident response efforts, perform root cause analysis, and implement or suggest corrective actions to mitigate security breaches. Develop and maintain incident response playbooks
Assess and mitigate security risks associated with the supply chain, like open source libraries, ensuring end-to-end security
Identify and address software security flaws and misconfigurations to enhance overall security posture
Perform code reviews and static/dynamic analysis. Languages include but not limited to Python, C++, C#, JS, Python, HCL
Develop and implement custom security solutions, minimizing reliance on paid services. Create security automation scripts and integrate security tools into CI/CD pipelines
Develop and implement automated dynamic security testing functions to ensure continuous security validation
Develop and maintain comprehensive threat models across embedded platforms, cloud services, and software applications to proactively identify, prioritize, and mitigate potential vulnerabilities throughout the system development lifecycle
Conduct regular penetration tests and security assessments of embedded platforms to proactively identify and remediate vulnerabilities unique to embedded systems and hardware integration
Conduct regular penetration tests and security assessments on cloud-hosted applications to proactively identify and remediate vulnerabilities unique to embedded systems and hardware integration
Conduct regular adversarial testing and red-teaming exercises focused on AI-powered services and machine learning models. Proactively identify and exploit potential vulnerabilities unique to AI systems and collaborate with legal and engineering teams to remediate security risks specific to AI and automated decision-making capabilities
Utilize advanced security tools like Cloud Security Posture Management platforms, open-source pen-testing tools, SIEMs, and SASTs to identify, analyze, validate, and stop vulnerabilities from entering the environment. Perform regular penetration testing and vulnerability assessments
Bachelor's or Master's degree in Computer Science, Computer or Electrical Engineering, Mathematics, or a related field
Benefits
Culture of caring.
Learning and development.
Interesting & meaningful work.
Balance and flexibility.
High-trust organization.
Company
GlobalLogic
GlobalLogic is a product development services company that specializes in chip-to-cloud software engineering.
Founded in 2000
10001+ employees
H1B Sponsorship
GlobalLogic has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (317)
2024 (295)
2023 (225)
2022 (329)
2021 (303)
2020 (388)
Funding
Current Stage
Late StageTotal Funding
$763.7MKey Investors
CPP InvestmentsNew Enterprise AssociatesNew Enterprise Associates,Peak XV Partners
2021-03-31Acquired
2017-01-11Secondary Market· $720M
2008-02-11Series C· $29.5M
Leadership Team
Srinivas Shankar
President and Chief Executive Officer
Vishal Anand
COO and Head of Americas
Recent News
Unified Communications fuel big enterprise success | CIO
2026-01-25
2026-01-23
Company data provided by crunchbase