Share this Job

Application Security Developer (Defender/Blue Team/DevSecOps)

Date: Mar 27, 2021

Location: CA

Company: Bentley Systems

Bentley Systems (Nasdaq: BSY) is the infrastructure engineering software company. We provide innovative software to advance the world’s infrastructure – sustaining both the global economy and environment. Our industry-leading software solutions are used by professionals, and organizations of every size, for the design, construction, and operations of roads and bridges, rail and transit, water and wastewater, public works and utilities, buildings and campuses, and industrial facilities. Our offerings include MicroStation-based applications for modeling and simulation, ProjectWise for project delivery, AssetWise for asset and network performance, and the iTwin platform for infrastructure digital twins. Bentley Systems employs more than 4,000 colleagues and generates annual revenues of more than $700 million, in 172 countries. www.bentley.com

 

Application Security Developer (Defender/Blue Team/DevSecOps)

 

The candidate will be part of a dedicated software security team (AppSec) at Bentley Systems. The principal responsibility of the AppSec team is to secure Bentley’s code. This includes a wide variety of technologies: C#, JavaScript, Node.js, single-page applications and Electron applications, Azure cloud services, Javascript web applications, and more. The successful candidate will have the opportunity to learn skills such as cloud, Agile, Dev(Sec)Ops, etc. and will work as part of a multinational, diverse team of remotely placed experts.

 

Location: Remote based from a home office in Canada with preference in Eastern or Central time zone

 

Responsibilities

  • Review and consultation with the development teams to produce secure software.
  • Automation of security in build and deployment pipeline (DevSecOps)
  • Identify vulnerabilities and define mitigations.
  • Research security topics and create best practices.
  • Develop automations and internal tools
  • Coordinate with a network of security champions to improve the security of our products.

Required Skills

  • Minimum 2 years professional work experience in security or development required.
  • Training in computer science, software engineering or related fields or equivalent experience.
  • Strong interest in software security and software development.
  • Methodical and detail-oriented, but also curious enough to investigate anomalies when warranted.
  • Strong problem-solving capabilities using various technologies.

 

Desired Skills

  • Knowledge of web technologies (JavaScript, HTML5, HTTP, REST, SOAP, etc.)
  • Experience with web security or debugging tools (ex: capture with Fiddler, Wireshark, etc)
  • Good knowledge of some of the following programming languages: C++, C# or Typescript
  • Knowledge of OWASP Top10 or SANS Top 25
  • Experience with pentesting tools like Burp Suite Pro, OWASP Zed Attack Proxy
  • Experience with exploit code creation for web and native (C/C++) vulnerabilities

 

#LI-Remote

#LI-LC1

Bentley is proud to be an equal opportunity employer and considers for employment all qualified applicants without regard to race, color, gender/gender identity, sexual orientation, disability, marital status, religion/belief, national origin, caste, age, or any other characteristic protected by local law or unrelated to job qualifications.


Job Segment: Engineer, Software Engineer, Wastewater, Water Treatment, Engineering