Security Engineer, Platform & Tooling
Skills
About This Role
Position Overview
- The Security Engineer, Platform & Tooling owns the shared automation backbone that serves both security-
- operations teams (Red, Blue, Purple) and the product SDLC.
- The mandate is twofold:
- Eliminate operational toil by building reliable pipelines for scans, telemetry, and evidence management.
- Embed security into DevOps workflows (DevSecOps) so vulnerabilities are identified and remediated early.
CI/CD & DevSecOps Automation
- Integrate SAST (Semgrep), DAST (ZAP, Burp), and SCA scanners into GitHub/GitLab pipelines.
- Enforce IaC and container-image checks (Terraform, CloudFormation, Dockerfile linters).
- Publish build-stage security metrics (OWASP risk tags, pass/fail gates) to engineering dashboards.
Offensive & Defensive Tooling
- Orchestrate bulk scans (ZAP, Nuclei, Semgrep) outside the SDLC for red-team engagements.
- Parse SARIF/JSON outputs and route findings to DefectDojo and Jira with de-duplication logic.
Telemetry Ingestion & SIEM/XDR Pipelines
- Maintain schemas, enrichment, and data-quality checks for Windows/M365, AWS, and Azure logs.
- Monitor pipeline health via automated SLIs/SLOs; trigger self-healing routines where feasible.
Reusable Artefact Curation
- Standardise Nuclei templates, Burp/ZAP add-ons, Sigma rules, and threat-hunt notebooks.
- Version and distribute through an internal registry; provide CLI tooling for one-command deployment.
Lab & Sandbox Infrastructure
- Operate disposable AD forests, cloud sandboxes, and target containers for red/purple exercises.
- Provide “one-click” Terraform/Ansible scripts that bootstrap environments in \< 15 minutes.
Process Optimisation & Practitioner UX
- Conduct quarterly time-motion studies to locate manual pain points.
- Produce concise documentation and in-tool help to maximise adoption by security analysts and developers.
Metrics & Continuous Improvement
- Report KPIs (see below) to leadership; maintain a roadmap aligned with both Ops and SDLC priorities.
Requirements
- Programming: Advanced proficiency in Python or Go for pipeline tooling and API integrations.
- CI/CD & DevOps: Demonstrable experience with Jenkins, GitHub Actions, GitLab CI, or Azure DevOps;
- familiarity with GitOps patterns.
- Security Scanners & Formats: Hands-on with ZAP, Semgrep, Nuclei, SARIF/JSON, CycloneDX, SBOMs.
- Container & Cloud: Docker/Kubernetes, plus AWS or Azure deployment experience; image-hardening and
- runtime-security controls.
- Data Engineering: Log parsing, schema mapping, and streaming (Kafka, Kinesis, or equivalent).
- IaC & Configuration Management: Terraform, CloudFormation, Ansible, or similar.
- Collaboration: Proven record of working with both software-engineering squads and security-operations teams,
- translating requirements into intuitive tooling.
- Strong proficiency in both written and spoken English.
- Adaptability to thrive in dynamic, fast-paced environments and remote work settings.
- Effective team player with excellent collaboration and interpersonal skills.
- Ability to perform under pressure with a positive attitude and a focus on team success.
- Demonstrates high levels of responsibility, reliability, and accountability.
- Willingness and ability to travel internationally when required.
Nice-to-Haves
- Experience with implementing OWASP DSOMM
• Certified Kubernetes Administrator (CKA)
- DevOps or DevSecOps-specific certifications (e.g., DSOE, CDP)
- What we offer:
- Competitive Compensation: Enjoy a salary package tailored to your skills and experience
- Comprehensive leave package
- Top-Tier Equipment: Stay productive with the latest tools, including a MacBook and iPhone.
- Thriving Culture: Immerse yourself in a dynamic, inclusive work environment that fosters growth.
- Pay: From AED10,000.00 per month
Education
- Bachelor's (Preferred)
Experience
- Programming in Python : 5 years (Preferred)
- Go: 4 years (Preferred)
- API integrations: 5 years (Preferred)
- CI/CD: 5 years (Preferred)
- DevOps: 5 years (Preferred)
- Security Scanners ZAP, Semgrep, Nuclei (must be hands-on): 5 years (Preferred)
- AWS or Azure : 4 years (Preferred)
- IaC & Configuration Management: Terraform, CloudFormation: 5 years (Preferred)
Your resume, rewritten
for this exact role.
Sign up free — Base Career tailors your CV to this job description in 60 seconds.
01 / 05
Resume Tailored to This Job
Your keywords, structure, and story — rewritten to match this exact role and pass ATS filters.
Free · No card · 60 seconds
02 / 05
Cover Letter for This Role, Done
Job-specific cover letters written in Gulf professional tone — ready in seconds, not hours.
Free · No card · 60 seconds
03 / 05
See How Well You Fit This Role
AI match score with clear reasons — know your fit before investing time in the application.
Free · No card · 60 seconds
04 / 05
Apply in One Click
Autofill any application form on Workday, LinkedIn, Bayt, Greenhouse — with your tailored content.
Free · No card · 60 seconds
05 / 05
Track It. Follow Up at the Right Time.
Visual pipeline for every application with AI-timed follow-up reminders so nothing slips.
Free · No card · 60 seconds
2.2K+
Cover Letters & Follow-ups
1.8K+
Resumes Tailored
190.5K+
Jobs Tracked
Trusted by professionals at
Stop applying blindly.
Start getting hired.
Base Career automates the hardest parts of job searching — apply smarter, not harder.
AI Resume in 60s
Your resume rewritten for this exact role using the job description as the brief.
ATS-Optimized
Get past automated screening filters with the right keywords matched to each job.
Application Tracker
Track every job, follow-up, and interview in one visual kanban board.
Free plan · No credit card required