Sr Principal Product Security Automation Engineer at Dematic

As a technical leader of product security automation for Dematic you will be essential to the advancement of security throughout the company, enabling the success and growth of the business in an environment of increasing demands for comprehensive and robust product security. Under the Vice President of Global Product Security, you will be responsible for product security automation initiatives for next-generation products as well as existing products. You will provide best-in-class security automation guidance and vision, while passionately pursuing personal and organizational excellence in the field of security. As an invaluable member of a highly collaborative organization that is dedicated to serving with the utmost in excellence and integrity, you will be ever growing in technical expertise and the skills necessary to equip our team to protect our organization, our customers, and our communities.

We offer:

• Career Development
• Competitive Compensation and Benefits
• Pay Transparency
• Global Opportunities

Learn More Here: https://www.dematic.com/en-us/about/careers/what-we-offer

Dematic provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

The base pay range for this role is estimated to be $131,250 - $201,250 at the time of posting. Final compensation will be determined by various factors such as work location, education, experience, knowledge, and skills.

Tasks and Qualifications:

What you will do in this role:

• Provide technical security automation leadership to globally distributed product development, operations, and support organizations across Dematic.
• Define technical security automation strategy that encompasses all Dematic products, including next-gen software solutions, existing software solutions, and operational technology solutions.
• Guide automation initiatives to achieve highly efficient, high-fidelity solutions, enabling a comprehensive set of security controls, both proactive and reactive, ensuring robust product security that operates at the speed of the business.
• Significantly contribute to the design and implementation of overall product security strategy and architecture.
• Collaborate with technology and engineering teams to both define and implement automation strategies that achieve shared objectives.
• Drive advancement of technical and operational capabilities necessary to implement a robust product security automation strategy – one that is worthy of the trust placed in us by our customers and business partners.
• Provide guidance and leadership for all efforts to build security into every aspect of Dematic’s product development lifecycle, for both software and operational technology.
• Advise and educate development teams on application, cloud, and product security standard methodologies, security automation, and the proper use of third-party security products and services.
• Build and maintain high-trust, highly collaborative relationships with teams and individuals in product development, product management, corporate security and compliance, and across the organization in general.
• Mentor application, infrastructure, and operational technology security engineers, as well as security champions globally distributed throughout the company.
• Continuously learn, stay ahead of, and evaluate industry trends/direction and technical developments in the product and cloud security automation domains, and deeply engage with industry leaders to inform and direct Dematic security technology strategy.
• Work closely with a team of security staff, in conjunction with product development, to ensure company products and services withstand all foreseen and reasonable attacks.
• Engage with product management, customer sales/support, and other functions as needed to further business development from a security perspective.
• Potentially engage with customers directly as required by project leadership.

What we are looking for:

• 10+ years hands-on experience in modern software development environments, including at least 4 years as an infrastructure engineer or developer and 5+ years in a security automation / DevSecOps role.
• Extensive experience working in product development / operations and in security engineering in public cloud environments, including AWS, GCP, and/or Azure.
• Extensive experience in infrastructure as code, compliance as code, container-based / Kubernetes deployments, serverless architectures, and DevSecOps continuous deployment environments.
• Deep knowledge of cloud technology and cloud security.
• Significant experience with offensive security technology, methodology, and practices, especially using automation.
• Proficiency in applied cryptography, including the full spectrum of methods, algorithms, uses, and patterns.
• Experience successfully mentoring and leading technical staff and small teams.
• Preference for and ability to thrive in highly collaborative work environments.
• Passionate and quick learner.
• Dedicated, highly motivated, energetic and relentless pursuer of quality and successful outcomes that benefit the broader team, organization, and community.
• Open and direct communicator.
• Outstanding written and spoken communication skills, including public speaking and communicating before engineering, business, and executive leadership.
• Experience communicating persuasive arguments and complex information before technical and non-technical leadership.
• Experience giving industry conference presentations a significant plus.
• Bachelor’s degree in computer science or other STEM field is required, however, equivalent experience may be substituted.
• Graduate degree is a plus.
• Technical security certifications (such as GIAC certifications or Offensive Security certifications) are highly desirable, especially in application security and cloud security.
• Public cloud certifications.

#LI-DP1

Apply Now