Drive the integration of security practices to the software development and delivery process
As a developer in this team, you will build the tooling required to implement DevSecOps the best way possible for Coveo. On top of it, you will build and maintain multiple internal services that work together to support day to day security operations, like access management, continuous compliance or security testing. You will be collaborating with teams across the company to help them ship innovations faster and safer, by absorbing security complexity and making their life easier. All that, in the cloud, using the best providers out there. Do you have an idea that saves time for everyone else? Do it!
Here is a glimpse at your responsibilities:
Own and evolve the security tools Coveo uses in both the continuous integration and continuous deployments pipeline.
Design and support access management workflows to control and monitor access to infrastructure and applications.
Push the envelope, find clever solutions to make Coveo reach its key objectives.
Participate in vulnerability management processes by triaging findings, managing exceptions, and helping ensure timely remediation.
Support compliance automation using tools to enforce standards across cloud infrastructure.
Design, deploy, and maintain web application firewalls to protect Coveo from potential vulnerabilities.
Partner with engineering, infrastructure, and business teams to design security controls that align with real-world constraints.
Here is what will qualify you for the role:
You are well versed in producing reusable code in Python, building robust and scalable systems.
You have in-depth knowledge of best security practices in the context of software development.
You have hands on previous Cloud service provider experience (ideally AWS), configuring and securing a variety of services, including Compute, Storage, Networking and Kubernetes
You possess in-depth knowledge of DevOps tools and workflows, enabling seamless integration of security practices throughout the software development lifecycle.
You have a track record of automating security and infrastructure processes to reduce complexity for other developers.
Here is what would make you stand out:
Bonus if you are proficient with Terraform for infrastructure-as-code, especially for security-related resources like IAM roles, secrets, etc.
You have hands-on experience designing, operating, or integrating application security controls such as web application firewalls (WAF), application-layer threat detection, runtime protections, and security testing or monitoring tooling (e.g., SAST, DAST, IAST, RASP, or API security tools).
Do you think you can bring this role to life?
You don’t need to check every single box; passion goes a long way and we appreciate that skillsets are transferable.
Send us your application, we want to get to know you!
Join the Coveolife!
We encourage all qualified candidates to apply regardless of, for example, age, gender, disability, gaps in CV, national or ethnic background. We know that applying for a new role is a lot of work and we really appreciate your time.The job title is subject to change based on internal practices or the organization’s structure.#li-hybrid
