Product Security Specialist
Company: GEOTAB
Location: Atlanta
Posted on: October 16, 2024
|
|
|
Job Description:
Who we are
Geotab is a global leader in IoT and connected transportation and
certified "Great Place to Work." We are a company of diverse and
talented individuals who work together to help businesses grow and
succeed, and increase the safety and sustainability of our
communities.
Geotab is advancing security, connecting commercial vehicles to the
internet and providing web-based analytics to help customers better
manage their fleets. Geotab's open platform and Geotab Marketplace
, offering hundreds of third-party solution options, allows both
small and large businesses to automate operations by integrating
vehicle data with their other data assets. Processing billions of
data points a day, Geotab leverages data analytics and machine
learning to improve productivity, optimize fleets through the
reduction of fuel consumption, enhance driver safety and achieve
strong compliance to regulatory changes.
Our team is growing and we're looking for people who follow their
passion, think differently and want to make an impact. Ours is a
fast paced, ever changing environment. Geotabbers accept that
challenge and are willing to take on new tasks and activities -
ones that may not always be described in the initial job
description. Join us for a fulfilling career with opportunities to
innovate, great benefits, and our fun and inclusive work culture.
Reach your full potential with Geotab. To see what it's like to be
a Geotabber, check out ourblogand follow us @InsideGeotab
onInstagram. Join ourtalent networkto learn more about job
opportunities and company news.Who you are:
We are always looking for amazing talent who can contribute to our
growth and deliver results! Geotab is seeking a Product Security
Specialist who will review existing/new/proposed products with a
variety of source code, dynamic and dependency scanners, manual
code reviews and security-based architecture reviews as required.
If you love technology, and are keen to join an industry leader -
we would love to hear from you!
What you'll do:
As a Product Security Specialist your key area of responsibility
will be validating scanner findings by tracing source code for a
variety of code bases and provides developer level suggestions for
code remediation. You will need to work closely with technical and
non technical stakeholders to evaluate results of risk
assessments.
To be successful in this role you will be a self-starter with
strong written and verbal communication skills, and have the
ability to quickly understand complex, technical concepts. In
addition, the successful candidate will be able to work well under
pressure and respond to fast changing priorities and deadlines..
The successful candidate will also be highly organized and able to
manage multiple tasks and projects simultaneously.
How you'll make an impact
Review existing/new/proposed products with a variety of source
code, dynamic and dependency scanners, manual code reviews and
security-based architecture reviews as required
Manually validates scanner findings by tracing source code for a
variety of code bases (C#, .net, Java, js/ts/html, swift, kotlin,
python, C, firmware) (Not all Required) and provides developer
level suggestions for code remediation.
Explain risk assessments at both the developer (technical) and
management (Non technical) levels.
Write and maintain scripts/code (bash and python) to generate scan
input packages, automate security scanner execution and integrate
scanners with CI pipelines and Google Cloud storage and reporting
mechanisms.
Update scanning scripts quickly, and refactor as needed.
Contribute to secure coding standards (involves developing secure
coding training for current and future developers).
Perform technical writing of assessment reports and vulnerability
descriptions for product owners and developers.
Look at the bigger picture and question whether the coverage is
sufficient, and if not make recommendations to address coverage
gaps.
Follow through to prevent things falling through the cracks.
Prioritizes work that benefits the team. Escalates issues in a
timely manner.
Support Geotab global strategic initiatives.
What you'll bring to the role
3-5+ years of experience with security evaluation/analysis and
security code reviews or relevant development experience
Bachelor's degree in Computer Science, Information Management,
Engineering or a related field
Security certifications highly preferred (OSCP,OSWA,OSWE)
Experience using source code, dynamic and dependency scanners (e.g.
Veracode, Fortify, Sentinel, owasp dependency, NetSparker, Qualys
etc.)
Knowledge of programming languages; web service technologies;
dependency package managers, and how they are specified in
code.
Able to dive deeply into convoluted or difficult code to evaluate
the validity of potential vulnerabilities.
Competent with Linux, Windows, GCE, bash, python.
#LI-DNI
If you got this far, we hope you're feeling excited about this
role! Even if you don't feel you meet every single requirement, we
still encourage you to apply.
Please note: Geotab does not accept agency resumes and is not
responsible for any fees related to unsolicited resumes. Please do
not forward resumes to Geotab employees.
Why job seekers choose Geotab
Flex working arrangements
Home office reimbursement program
Baby bonus & parental leave top up program
Online learning and networking opportunities
Electric vehicle purchase incentive program
Competitive medical and dental benefits
Retirement savings program
*The above are offered to full-time permanent employees only
How we work
At Geotab, we have adopted aflexible hybridworking model in that we
have systems, functions, programs and policies in place to support
both in-person and virtual work. However, you are welcomed and
encouraged to come into our beautiful, safe, clean offices as often
as you like. When working from home, you are required to have a
reliable internet connection with at least 50mb DL/10mb UL. Virtual
work is supported with cloud-based applications, collaboration
tools and asynchronous working. The health and safety of employees
are a top priority. We encourage work-life balance and keep the
Geotab culture going strong with online social events, chat rooms
and gatherings. Join us and help reshape the future of
technology!
Geotab verifies candidates' eligibility to work in the United
States through, an internet-based system operated by.
Other employment statements:
Geotab will not discharge or in any other manner discriminate
against employees or applicants because they have inquired about,
discussed, or disclosed their own pay or the pay of another
employee or applicant. Additionally, employees who have access to
the compensation information of other employees or applicants as a
part of their essential job functions cannot disclose the pay of
other employees or applicants to individuals who do not otherwise
have access to compensation information, unless the disclosure is
(a) in response to a formal complaint or charge, (b) in furtherance
of an investigation, proceeding, hearing, or action, including an
investigation conducted by the employer, or (c) consistent with the
Company's legal duty to furnish information.
We are committed to accommodating people with disabilities during
the recruitment and assessment processes and when people are hired.
We will ensure the accessibility needs of employees with
disabilities are taken into account as part of performance
management, career development, training and redeployment
processes. If you require accommodation at any stage of the
application process or want more information about our diversity
and inclusion as well as accommodation policies and practices,
please contact us at careers@geotab.com. Geotab provides equal
employment opportunities (EEO) to all employees and applicants for
employment without regard to race, color, religion, sex, national
origin, age, disability or genetics. In addition to federal law
requirements, Geotab complies with applicable state and local laws
governing nondiscrimination in employment in every location in
which the company has facilities. This policy applies to all terms
and conditions of employment, including recruiting, hiring,
placement, promotion, termination, layoff, recall, transfer, leaves
of absence, compensation and training. Geotab expressly prohibits
any form of workplace harassment or discrimination based on race,
color, religion, gender, sexual orientation, gender identity or
expression, national origin, age, genetic information, disability,
or veteran status. Improper interference with the ability of
Geotab's employees to perform their job duties may result in
discipline up to and including discharge. If you would like more
information about our EEO program or wish to file a complaint,
please contact our EEO officer, Alex Cocq at
HRCompliance@geotab.com. For more details, view a copy of the
EEOC's. By submitting a job application to Geotab Inc. or its
affiliates and subsidiaries (collectively, "Geotab"), you
acknowledge Geotab's collection, use and disclosure of your
personal data in accordance with our . Click to learn more about
what happens with your personal data.
Keywords: GEOTAB, Redan , Product Security Specialist, Other , Atlanta, Georgia
|
Click
here to apply!
|
