Sr Information Security Engineer

Digi International Inc.
Sandy, United States of America
20 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 149K

Job location

Sandy, United States of America

Tech stack

Kubernetes Security
Amazon Web Services (AWS)
Computing Platforms
User Authentication
Azure
Bash
Software as a Service
Cloud Computing Security
Computer Security
Computer Networks
Continuous Integration
DevOps
DNS
Identity and Access Management
Virtual Private Networks (VPN)
Python
Routing
Network Segmentation
Cloud Services
Secure Coding
Security Information and Event Management
Software Engineering
Systems Integration
Software Vulnerability Management
Scripting (Bash/Python/Go/Ruby)
Transport Layer Security
Cloud Platform System
Software Security
Firewalls (Computer Science)
Kubernetes
CIS Benchmarks
Devsecops
Vulnerability Analysis

Job description

Opengear is expanding its Information Security capability to support the development and operation of our networking appliances, software platforms, customer-hosted solutions, and SaaS offerings., We are seeking a Senior Information Security Engineer to help design, implement, and continuously improve security across our products, cloud environments, development processes, and corporate systems. This role will work closely with engineering, DevOps, quality assurance, and product teams to ensure security is embedded throughout the software development lifecycle., * Design, implement, and maintain security controls across cloud, SaaS, and on-premises environments

  • Partner with engineering teams to embed security into the software development lifecycle and CI processes
  • Lead vulnerability management activities, including identification, prioritization, remediation tracking, and reporting
  • Conduct security assessments, threat modelling, and risk analysis for products, infrastructure, and new initiatives
  • Develop and maintain security tooling, automation, and monitoring capabilities
  • Drive adoption of secure coding practices and provide guidance to engineering teams on security-related issues
  • Monitor, investigate, and respond to security incidents, coordinating remediation activities where required
  • Implement and manage cloud security controls across AWS and Azure environments
  • Develop and maintain security policies, standards, and technical security guidelines
  • Support compliance initiatives and security audits by providing technical expertise and evidence
  • Evaluate emerging threats and recommend improvements to security architecture and processes
  • Contribute to security awareness and education initiatives across the organization
  • Mentor engineers and help raise the overall security capability of the engineering organization

Requirements

  • 5+ years of experience in Information Security, Application Security, Security Engineering, or a related field
  • Strong understanding of modern security principles, frameworks, and best practices
  • Experience securing cloud environments, particularly AWS
  • Experience implementing and managing identity and access management controls
  • Strong understanding of application security concepts including authentication, authorisation, encryption, secure coding practices, and common attack vectors
  • Experience performing vulnerability assessments and managing remediation programs
  • Familiarity with common security tools including vulnerability scanners, endpoint security solutions, SIEM platforms, and security monitoring tools
  • Experience integrating security controls into CI pipelines and development workflows
  • Strong scripting or automation skills using Python, Bash, or similar languages
  • Understanding of networking concepts including firewalls, VPNs, DNS, TLS, routing, and network segmentation
  • Experience investigating and responding to security incidents
  • Strong communication skills with the ability to collaborate effectively across technical and non-technical teams
  • Demonstrated ability to independently lead technical initiatives and drive outcomes

Desired But Not Required

  • Experience with Kubernetes and container security
  • Experience with DevSecOps practices and tooling
  • Experience securing SaaS platforms and customer-facing cloud services
  • Familiarity with compliance frameworks such as SOC 2, ISO 27001, NIST CSF, or CIS Controls
  • Experience performing threat modelling and security architecture reviews
  • Experience with Infrastructure as Code security tools and cloud security posture management platforms
  • Experience supporting embedded systems, networking products, or IoT devices
  • Experience mentoring engineers and leading security initiatives

*Please note that we are unable to provide visa sponsorship for this position. This includes, but is not limited to, work visas, employment-based have valid work authorization in the United States at the time of application. Visa applications of any kind will not be considered.

Benefits & conditions

Digi International offers a distinctive Total Rewards package including a short-term incentive program, new hire stock award, paid parental leave, open (uncapped) PTO, and hybrid work environment in addition to our competitive medical, health & wellbeing and compensation offerings.

The anticipated base pay range for this position is $95,000 - $149,000. Pay ranges are determined by role, job level and primary job location. The range displayed reflects the reasonable range we anticipate paying for this position and reflects the cost of labor within several U.S. geographic markets. The specific salary offered within the range will depend on various factors including, but not limited to the candidate's relevant and prior experience, education, skills, and primary work location. It is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each position. Pay ranges are typically reviewed and updated annually.

At Digi, we embrace diversity and inclusion among our teammates. It is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. We are committed to providing an environment of respect where equal employment opportunities are available to all applicants and teammates. Opengear is committed to building a diverse and inclusive team. We welcome applicants from all backgrounds.

Equal Opportunity Employer

This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.

About the company

Opengear keeps networks running smoothly with our Network Resilience Platform. Leveraging our Smart Out of Band solution and automation capabilities, users gain unparalleled presence and proximity to devices. By providing an independent management plane, the Network Resilience Platform ensures secure remote access, enabling connectivity from anywhere. This allows for the effortless deployment, management, and remediation of networks-on the First Day, Worst Day, and Every Day. It's why over 75% of Fortune 500 companies trust us for their networks, whether on- or off-premises or in the cloud. Opengear is a global company with offices in Brisbane, Australia and Sandy, Utah.

Apply for this position