WSO2Con2025 Logo

March 18-20 | Barcelona, Spaain

 

Digital Transformation Team

Senior Security Engineer

Sri Lanka

About the Role

We seek a Senior Security Engineer to own and manage application security for the Security and Compliance team. The role will also require conducting in-depth security research, guiding secure development practices, and promoting security best practices. The selected individual will serve as a trusted application security expert for the organization.

Your Key Responsibilities

  • Research vulnerabilities and assess their impact on web, mobile, on-premises and cloud applications.
  • Explore new security technologies and integrate into WSO2 processes.
  • Automate security processes and build centralized visibility for efficiency.
  • Participate in code and design reviews of products/solutions developed by other teams and provide expert feedback.
  • Conduct security scanning and manual penetration testing of applications and deployments using security tools.
  • Develop and document policies and processes to ensure a security-focused SDLC.
  • Prepare software development and deployment best practices guidelines.
  • Assist other teams to handle security incidents and evaluate internal and external security scan reports.
  • Conduct security announcements to customers and community users.
  • Work with customers and external security researchers on the responsible disclosure of vulnerabilities.
  • Conduct training for other teams regarding security processes, best practices and vulnerability identification and mitigation.
  • Perform any ad hoc tasks required for team success, especially during security incidents.
  • Engage with extended teams (such as product engineering, pre-sales, marketing, sales, legal, and infrastructure) on security-related efforts.
  • Build up a solid professional relationship with the other members of the Security and Compliance team and the wider organization.
  • Handle conflicts professionally and work towards resolution.

Qualifications and Skills

  • BSc in Computer Science, Engineering, Security, or equivalent with 2 - 4 years relevant industry experience.
  • Renowned security certifications such as OSCP, OSWE and CISSP will be an added advantage.
  • Cloud certifications in Azure, AWS or GCP will be an added advantage.
  • Passionate about information security and enjoys working in that domain.
  • Proficiency in at least one programming/scripting language, having experience in Java, C#, C/C++, Python or Bash will be an added advantage.
  • Have broad knowledge on core computer science concepts, especially on web technologies, networking and cryptography.
  • Excellent communication and interpersonal skills, ability to negotiate with customers, peers and partners to achieve a win-win solution.

In Addition to a Competitive Compensation Package, WSO2 Offers:

  • A work culture and environment where we value both hard work AND flexibility.
  • A flexible vacation/leave plan that fits your needs.
  • Health, dental, and life insurance for you and your family.

Diversity Drives Innovation:

We've built our business on a commitment to diversity and inclusion. We believe it's important to foster an environment that values and respects each individual's strengths, perspectives, and ideas. Doing so not only drives innovation; it also ensures that we can create superior experiences for our customers, partners, and employees worldwide. We value the diversity of our team regardless of race, ethnicity, religion, gender, age, national origin, disability, sexual orientation, or veteran or marital status, and we do not tolerate any form of discrimination.

Apply Now

  Yes, I give WSO2 permission to use my personal data for recruitment purposes only.
  I would like to receive emails from WSO2 to learn about new releases, security announcements, and other updates.