Application Security Engineer

We are looking for an Application Security Engineer to join our growing team of experts for our SaaS platform. The SaaS solutions we develop and offer to our customers are built on Microsoft Azure offering best-in-class Data Protection services.

Your tasks will include:

• Integrate security throughout all steps of the SDLC
• Automation of the deployments, and maintenance of a SaaS Application Security program and platform
• Working with engineering teams to build upon Secure SDLC deployments
• Continuous evaluation and improvement of the reliability, security and compliance of our systems and code
• Proactively meet standards for information security and compliance, such as FedRAMP, ISO (International Standards Organization), SOX (Sarbanes Oxley), SSAE (Standards for Attestation Engagements) 16, etc.
• Shepherd the definition, documentation, and improvement of our internal standards security and resiliency

Technologies we work with:

• Atlassian Suite, Azure DevOps, Git
• Azure (Entra ID, API Management, Cosmos Db, Storage services, Azure Functions, static website hosting, Azure security, etc.)
• IaC tools (Azure ARM templates, AWS CloudFormation, Terraform, the Serverless Framework, etc.)
• Observability (Azure Monitor, AppInsights, Elastic Cloud [ELK])

What we expect from you:

• 3+ years of experience implementing secure design principles within a modern SDLC framework, directly supporting the security and compliance of Engineering and SRE teams
• A partner mindset. You do not see security engineering as a gatekeeper but someone who comes along side and enables teams through hand on engineering
• Demonstrating a team-oriented attitude, with a willingness to actively support and collaborate with all teams to achieve our goals
• Deep understanding of Software Development practices and standards
• Experience with Security and Compliance Native and Off-the-Shelf toolsets (Sentinel, SAST, DAST, CNAPP and Cloud Security PaaS tools.)
• Experience managing Azure IaaS (Infrastructure as a Service) and PaaS (Platform as a Service) solutions
• Strong problem-solving skills and the ability to troubleshoot complex issues in a distributed, multi-tenant environments
• Experience with implementation, maintenance, and support of CI/CD practices and tools (Azure DevOps, GitHub Actions or similar)
• English proficiency level sufficient to communicate with international teams

Will be an advantage:

• Experience with taking cloud-based SaaS Products through various Compliance frameworks (FedRAMP, HiTRUST, Soc2)
• Experience with threat modeling
• Experience with AWS (ECS, RDS, DynamoDb, VPCs, Step Functions, Lambda, IAM, EC2, S3, etc.)
• Understanding of cryptography in applications and environments
• Experience with C# and .NET

We offer:

• Unlimited PTO
• Medical, dental, and vision benefits that start on day one
• Flexible spending accounts
• Life insurance and short-term and long-term disability coverage
• Family planning support benefits, along with 100% paid maternity and parental leave
• 401k match
• Veeam Care Days – additional 24 hours for your volunteering activities
• Professional training and education, including courses and workshops, internal meetups, and unlimited access to our online learning platforms (Percipio, Athena, O’Reilly) and mentoring through our MentorLab program.

Please Note: If the applicant is permanently located outside of the United States Veeam reserves the right to decline the application for the position. Remote work is only possible for employees located in the United States.

#LI-MM1

#LI-REMOTE