Do you want to make a difference to how open-source software is used in a fast-growing cloud native company?
You will contribute to building & running security tools & projects to make Workday more secure for our customers. We are looking for someone who is not afraid to tackle the root cause of an issue rather than treating the symptoms. You should possess solid experience working with security or development teams and have a background working in a Secure DevOps environment.
What you will do:
- Drive the adoption of Workday’s open-source governance framework across the organisation
- Work with development & infrastructure teams to integrate the open-source security lifecycle into software build tool chains
- Enhance processes to remediate vulnerabilities discovered in open-source libraries and tool
- Stay up to date with the latest technology advancements in public cloud technologies
- Work closely with our DevSecOps team on ‘shift left’ activities
- Report progress against key metrics to senior management across the business
- 7+ years of experience in an Information Security, Application Security, or Development role with a security focus.
- Understanding of how software build tools work in a CI/CD environment
- Understanding of open-source software security and supply chain issues
- Experience working in a large enterprise environment with diverse teams and technologies.
- In-depth understanding of various operating systems, TCP/IP networking, OWASP Top 10, cloud native technologies such as docker & Kubernetes, other public cloud deployments.
