Security Engineer, Platform & Tooling

Position Overview:

The Security Engineer, Platform & Tooling owns the shared automation backbone that serves both security-

operations teams (Red, Blue, Purple) and the product SDLC. The mandate is twofold:

- Eliminate operational toil by building reliable pipelines for scans, telemetry, and evidence management.

- Embed security into DevOps workflows (DevSecOps) so vulnerabilities are identified and remediated early.

Responsibilities:

CI/CD & DevSecOps Automation

- Integrate SAST (Semgrep), DAST (ZAP, Burp), and SCA scanners into GitHub/GitLab pipelines.

- Enforce IaC and container-image checks (Terraform, CloudFormation, Dockerfile linters).

- Publish build-stage security metrics (OWASP risk tags, pass/fail gates) to engineering dashboards.

Offensive & Defensive Tooling

- Orchestrate bulk scans (ZAP, Nuclei, Semgrep) outside the SDLC for red-team engagements.

- Parse SARIF/JSON outputs and route findings to DefectDojo and Jira with de-duplication logic.

Telemetry Ingestion & SIEM/XDR Pipelines

- Maintain schemas, enrichment, and data-quality checks for Windows/M365, AWS, and Azure logs.

- Monitor pipeline health via automated SLIs/SLOs; trigger self-healing routines where feasible.

Reusable Artefact Curation

- Standardise Nuclei templates, Burp/ZAP add-ons, Sigma rules, and threat-hunt notebooks.

- Version and distribute through an internal registry; provide CLI tooling for one-command deployment.

Lab & Sandbox Infrastructure

- Operate disposable AD forests, cloud sandboxes, and target containers for red/purple exercises.

- Provide “one-click” Terraform/Ansible scripts that bootstrap environments in < 15 minutes.

Process Optimisation & Practitioner UX

- Conduct quarterly time-motion studies to locate manual pain points.

- Produce concise documentation and in-tool help to maximise adoption by security analysts and developers.

Metrics & Continuous Improvement

- Report KPIs (see below) to leadership; maintain a roadmap aligned with both Ops and SDLC priorities.

Requirements:

- Programming: Advanced proficiency in Python or Go for pipeline tooling and API integrations.

- CI/CD & DevOps: Demonstrable experience with Jenkins, GitHub Actions, GitLab CI, or Azure DevOps;

familiarity with GitOps patterns.

- Security Scanners & Formats: Hands-on with ZAP, Semgrep, Nuclei, SARIF/JSON, CycloneDX, SBOMs.

- Container & Cloud: Docker/Kubernetes, plus AWS or Azure deployment experience; image-hardening and

runtime-security controls.

- Data Engineering: Log parsing, schema mapping, and streaming (Kafka, Kinesis, or equivalent).

- IaC & Configuration Management: Terraform, CloudFormation, Ansible, or similar.

- Collaboration: Proven record of working with both software-engineering squads and security-operations teams,

translating requirements into intuitive tooling.

- Strong proficiency in both written and spoken English.

- Adaptability to thrive in dynamic, fast-paced environments and remote work settings.

- Effective team player with excellent collaboration and interpersonal skills.

- Ability to perform under pressure with a positive attitude and a focus on team success.

- Demonstrates high levels of responsibility, reliability, and accountability.

- Willingness and ability to travel internationally when required.

Nice-to-Haves

- Experience with implementing OWASP DSOMM

- GIAC Cloud Security Automation (GCSA)

- HashiCorp Certified: Terraform Associate

- Certified Kubernetes Administrator (CKA)

- DevOps or DevSecOps-specific certifications (e.g., DSOE, CDP)

What we offer:

- Competitive Compensation: Enjoy a salary package tailored to your skills and experience

- Comprehensive leave package

- Top-Tier Equipment: Stay productive with the latest tools, including a MacBook and iPhone.

- Thriving Culture: Immerse yourself in a dynamic, inclusive work environment that fosters growth.

Pay: From AED10,000.00 per month

Education:

• Bachelor's (Preferred)

Experience:

• Programming in Python : 5 years (Preferred)
• Go: 4 years (Preferred)
• API integrations: 5 years (Preferred)
• CI/CD: 5 years (Preferred)
• DevOps: 5 years (Preferred)
• Security Scanners ZAP, Semgrep, Nuclei (must be hands-on): 5 years (Preferred)
• AWS or Azure : 4 years (Preferred)
• IaC & Configuration Management: Terraform, CloudFormation: 5 years (Preferred)

Work Location: In person