Lead Software Engineer - Platform Security
Redwood City, CA, USA | Sumo Logic
Functions:IT / Information Technology
Job Description:68 people have viewed this job
Work with product development teams to ensure robust, secure service posture from design over implementation to operation of Sumo Logic applications and cloud services.
Design and develop the federated multi-tenancy authentication and authorization model used across all our solutions to enable the complex security needs of our customers
Analyze and improve the efficiency, scalability, and reliability of our platform security components.
Review and prioritize platform security findings and provide hands-on security engineering expertise across a wide variety of technology platforms, assessing risk, crafting fixes, and implementing them in partnership with our dev and QE staff.
Assist in handling platform security incidents and work with our software security response team.
Write robust code; demonstrate its robustness through automated tests.
Work as a member of a team, helping the team respond quickly and effectively to business needs.
B.S., M.S., or Ph.D. in Computer Sciences or related discipline
7+ years of industry experience with a proven track record of ownership and delivery
Experience with SSO (Single-Sign-On) technologies including SAML and federation of identities (IdP initiated and SP initiated), multi-factor authentication
Experience with authentication protocols, Identity and Access Management, Access Control, Secure Software Development, Cloud Security, OAuth, etc…
Information Security expertise in cloud security architectures, designs, and engineering using technologies, solutions, or frameworks inclusive of OWASP, SIEMs, firewalls, etc...
Familiarity with authentication and authorization concepts and technologies for federated multi-tenant SaaS and web applications.
Object-oriented programming experience, for example in Java, Scala, Ruby, or C++.
Understand performance characteristics of commonly used data structures (maps, lists, trees, etc).
Desire to learn Scala, an up-and-coming JVM language (scala-lang.org).
Experience in multi-tenant and/or 24x7 commercial service is highly desirable.
Experience designing/building scalable REST API’s for distributed microservices.
Experience with AWS environments and services will be big plus (e.g. EC2, ELB, SQS, KMS, Cloudwatch, etc)
Happy working with Unix (Linux, OS X).
Agile software development experience (test-driven development, iterative and incremental development) is a plus.
Alrdeady a member? Sign In