Current jobs related to DevSecOps & Secure - SDLC Engineer - New York, New York - Marsh McLennan

  • DevSecOps & Secure-SDLC Engineer

    4 months ago

    New York, New York, United States Marsh McLennan Full time

    Marsh McLennan is seeking candidates for the following position in our New York, Chicago, Atlanta, Phoenix, or Urbandale offices.DevSecOps & Secure-SDLC EngineerWhat can you expect?Lead initiatives related to DevSecOps and Secure-SDLC.Define and enhance the company's Secure Software development Lifecycle (Secure-SDLC) which in turn will reflect the company's...

  • DevSecOps Security Architect

    2 days ago

    New York, New York, United States Maveris Full time

    About the RoleMaveris is seeking a highly skilled DevSecOps Security Architect to support a large Federal Government customer. As a key member of our team, you will be responsible for leading the delivery of a Federal Agency's Enterprise Security Architecture and Strategy.Key ResponsibilitiesProvide thought leadership for new techniques and design patterns...

  • DevSecOps Engineer

    2 days ago

    New York, New York, United States New York eHealth Collaborative Full time

    Job DetailsJob Location: Albany or NYC Office - Albany or New York, NYPosition Type: Full TimeTravel Percentage: OccasionalJob Shift: M - F 9am - 5pmDescriptionNew York eHealth Collaborative - DevSecOps EngineerNew York eHealth Collaborative (NYeC) is a not-for-profit organization working in partnership with the New York State Department of Health to improve...

  • DevSecOps Engineer

    2 days ago

    New York, New York, United States The Dignify Solutions LLC Full time

    Job Title: DevSecOps EngineerWe are seeking a highly skilled DevSecOps Engineer to join our team at The Dignify Solutions LLC. As a DevSecOps Engineer, you will play a critical role in ensuring the security and integrity of our systems and applications.Key Responsibilities:Implement and integrate security scan automation features in CI/CD pipelinesProvide...

  • Senior DevSecOps Engineer

    3 days ago

    New York, New York, United States Jobot Full time

    ### Job Details We are seeking a highly skilled and experienced Sr. DevSecOps Engineer to join our dynamic technology team. As a key member of our team, you will be responsible for implementing, supporting, and enhancing our robust security infrastructure. Your expertise will be crucial in ensuring the security, reliability, and efficiency of our systems...

  • DevSecOps Specialist

    5 days ago

    New York, New York, United States Oliver James Associates Full time

    DevSecOps LeaderWe are seeking a highly skilled DevSecOps Leader to join our team at Oliver James Associates. As a key member of our security team, you will be responsible for leading the DevSecOps workstream and secure development program across the entire enterprise.Key Responsibilities:Lead the DevSecOps workstream and secure development programDevelop...

  • Infrastructure Security Engineer

    3 weeks ago

    New York, New York, United States Herald Full time

    About Us Herald is at the forefront of developing digital frameworks for the commercial insurance sector. We currently offer developers a unified API to access quotes from various insurance providers. Our vision is to create solutions that seamlessly integrate applications with the insurance landscape, simplifying the insurance purchasing process to be as...

  • Application Security Specialist

    2 weeks ago

    New York, New York, United States RightTalents LLC Full time

    Job Title: Application Security SpecialistAbout the Role:We are seeking an experienced Application Security Specialist to join our team at RightTalents LLC. As an Application Security Specialist, you will play a critical role in ensuring the security and integrity of our applications and systems.Key Responsibilities:Collaborate with cross-functional teams:...

  • Security Engineer

    2 weeks ago

    New York, New York, United States Jobot Full time

    Job SummaryWe are seeking a highly skilled Senior DevSecOps Engineer to join our dynamic technology team at Jobot. As a key member of our team, you will be responsible for implementing, supporting, and enhancing our robust security infrastructure.Key ResponsibilitiesDevelop, deploy, and maintain security infrastructure tools to support the entire...

  • DevSecOps Software Engineer II

    1 week ago

    New York, New York, United States Zebra Technologies Full time

    About the RoleZebra Technologies is a leading provider of innovative solutions for the front line of business. We are seeking a highly skilled DevSecOps Software Engineer II to join our team.Key ResponsibilitiesDesign, develop, and test software applications on a variety of platforms.Develop and maintain documentation for software functionality.Participate...

  • Senior DevOps Security Engineer

    1 week ago

    New York, New York, United States Jobot Full time

    About the RoleWe are seeking a highly skilled and experienced Senior DevSecOps Engineer to join our dynamic technology team at Jobot. As a key member of our team, you will be responsible for implementing, supporting, and enhancing our robust security infrastructure.Key ResponsibilitiesDevelop, deploy, and maintain security infrastructure tools to support the...

  • Cloud Security Operations Engineer

    2 weeks ago

    New York, New York, United States 00002 Citibank, N.A. Full time

    About the Company:Citibank, N.A. is a leading global financial institution with operations in over 160 countries. We provide a wide range of financial products and services to consumers, corporations, and institutions. Our commitment to innovation and excellence sets us apart.Job Title: Cloud Security Operations EngineerAbout the Role:We are seeking a highly...

  • Data Security Expert, Associate

    2 days ago

    New York, New York, United States I.N.G. Group, LLC Full time

    About ING Americas TechING Americas Tech is the support backbone and catalyst for new and innovative solutions that drive growth for both internal and external customers. We strive to bring technical expertise and business knowledge together to support a wide range of products within media and telecoms (TMT), utilities power and renewables, natural...

  • Security Engineer

    1 month ago

    New York, New York, United States Bilt Rewards Full time

    Security EngineerReporting to: Chief Information Security OfficerLocation: New York, NYWhat is Bilt?Bilt Rewards is the first program for consumers to earn rewards on rent and daily neighborhood spend while creating a path towards home ownership.With an alliance of the nation's largest real estate owners, Bilt Rewards enables renters in more than three...

  • Senior Security Engineer, Application Security Testing Automation

    4 days ago

    New York, New York, United States Amazon Services LLC Full time

    About the RoleWe are seeking a highly skilled Senior Security Engineer to join our Application Security Testing Automation team at Amazon Services LLC. As a key member of our team, you will play a critical role in providing automated security testing solutions for all of Amazon.Key ResponsibilitiesDefine and drive strategy, act as a technical lead for the...

  • Software Engineer II

    3 days ago

    New York, New York, United States Zebra Technologies Full time

    About the RoleZebra Technologies is seeking a highly skilled Software Engineer II to join our DevSecOps team for the EMC division. As a key member of our team, you will be responsible for designing, developing, and testing software solutions that meet the needs of our customers.ResponsibilitiesDesign and develop software solutions using a variety of...

  • Software Engineer II

    1 day ago

    New York, New York, United States Zebra Technologies Full time

    About the RoleZebra Technologies is seeking a highly skilled Software Engineer II to join our DevSecOps team for the EMC division. As a key member of our team, you will be responsible for designing, developing, and testing software solutions that meet the needs of our customers.ResponsibilitiesDesign and develop software solutions using a variety of...

  • Software Engineer II

    2 days ago

    New York, New York, United States Zebra Technologies Full time

    About the RoleZebra Technologies is seeking a highly skilled Software Engineer II to join our DevSecOps team for the EMC division. As a key member of our team, you will be responsible for designing, developing, and testing software solutions that meet the needs of our customers.ResponsibilitiesDesign and develop software solutions using a variety of...

  • Software Engineer II

    3 days ago

    New York, New York, United States Zebra Technologies Full time

    About the RoleZebra Technologies is seeking a highly skilled Software Engineer II to join our DevSecOps team for the EMC division. As a key member of our team, you will be responsible for designing, developing, and testing software solutions that meet the needs of our customers.ResponsibilitiesDesign and develop software solutions using a variety of...

  • Software Engineer II

    3 days ago

    New York, New York, United States Zebra Technologies Full time

    About the RoleZebra Technologies is seeking a highly skilled Software Engineer II to join our DevSecOps team for the EMC division. As a key member of our team, you will be responsible for designing, developing, and testing software solutions that meet the needs of our customers.ResponsibilitiesDesign and develop software solutions using a variety of...

DevSecOps & Secure - SDLC Engineer

4 months ago

New York, New York, United States Marsh McLennan Full time

Marsh McLennan is seeking candidates for the following position in our New York, Chicago, Atlanta, Phoenix, or Urbandale offices.

DevSecOps & Secure-SDLC Engineer

What can you expect?

  • Lead initiatives related to DevSecOps and Secure-SDLC.
  • Define and enhance the company's Secure Software development Lifecycle (Secure-SDLC) which in turn will reflect the company's Application Development Security Policy,
  • Select and standardize application security tools. This includes vendor/tool assessments and full POC,
  • Integrate Secure-SDLC requirements and other security policy/requirements into the DevSecOps processes,
  • Define and enhance application security requirements and standards which must be designed for agile development methods leveraging traditional application architectures as well as cloud architectures and container workloads.

What is in it for you?

  • Marsh McLennan offers competitive employee benefits and a thriving culture
  • A company with a strong Brand and strong results to match;
  • Employee Resource Groups which provide access to leaders, relevant volunteer and mentoring opportunities, and interactions with counterparts in industry groups and client organizations.
  • Competitive pay (salary and bonus potential), Full benefits package – starting day one (medical, dental, vision, STD/LTD, life insurance, RSP (Retirement Savings Plan or TFSA (tax free savings account).
  • Tuition Reimbursement plan and participation in our Employee Stock Purchase Plan.
  • Entitled to vacation, floating holidays, time off to give back to your community, sick days, and provincial/national holidays (with early dismissal).

We will count on you to:

  • Advise the application security leadership on best practices and standards around application security tools with main focus to unify vulnerability reporting, create predictable CI/CD pipeline processes, and enable application teams to develop new capabilities securely, and free from security defects, by design
  • Assess security tools currently used within the various business Software Development Life Cycle processes to identify business requirements, and rationalize the tools set
  • Select new application security tools including vendor/tool assessments and conduct full POC to prove that the security solutions/products are fit-for-purpose and fit-for-use
  • Draft documentations for the Secure-SDLC and DevSecOps to illustrate the frameworks and process guidelines to internal customers ensuring the style is palatable and easy to navigate
  • Assess impact of new publications from the security industry (e.g. NIST 800-XXX, ISO 2700X:2022, etc) on the company's AppSec programs
  • Research new trends and advise the application security leaderships on impact of the new trends as they relate to currently used tools, tool chain roadmap, efficiency and effectiveness of current processes, etc.
  • Standardize code weakness analysis processes
  • Promote the priorities set forth by Global Information Security function, and the roadmap set forth by the Global Application Security

What you need to have:

  • 5 years+ DevSecOps and Secure-SDLC work experience
  • CISSP, CSSLP, cloud security, DevSecOps automation, or similar is required
  • Post-secondary education or equivalent experience as a DevSecOps Engineer
  • Develop/enhance and implement the Secure-SDLC framework
  • Design, implement, and rollout DevSecOps automations and tool chain
  • Implement sensors to collect data on key metrics for statistics and reporting
  • Serve as the subject matter expert in Secure-SDLC and DevSecOps
  • Advise on the processes and standards that are designed to implement a company's Application Development Security Policy
  • Experience in designing Secure-SDLC processes and relevant tooling to support the processes
  • Experience in software/application analysis tools like SAST, DAST, SCA, IAST, RASP, threat modeling, etc.
  • Technical hands-on experience in automating and integrating analysis tools into the DevSecOps pipeline.

What makes you stand out:

  • Identify application security requirements and brainstorm solutions
  • Assess the tooling and remediation of threats and vulnerabilities within our software/applications, and the hosting environment

In accordance with applicable legislation, Marsh will provide a reasonable accommodation to employees and prospective employees to the point of undue hardship upon request and as required in respect of the individual's particular restrictions and limitations. If you require a specific accommodation because of a disability or medical need please contact

Marsh is the world's leading insurance broker and risk adviser. With over 35,000 colleagues operating in more than 130 countries, Marsh serves commercial and individual clients with data driven risk solutions and advisory services. Marsh is a business of Marsh McLennan (NYSE: MMC), the leading global professional services firm in the areas of risk, strategy and people. With annual revenue approaching US $17 billion and 76,000 colleagues worldwide, MMC helps clients navigate an increasingly dynamic and complex environment through four market-leading businesses: Marsh, Guy Carpenter, Mercer, and Oliver Wyman. Follow Marsh on Twitter @MarshGlobal; LinkedIn; Facebook; and YouTube, or subscribe to BRINK.

Marsh McLennan is committed to embracing a diverse, inclusive and flexible work environment. We aim to attract and retain the best people regardless of their sex/gender, marital or parental status, ethnic origin, nationality, age, background, disability, sexual orientation, gender identity or any other characteristic protected by applicable law.

The applicable base salary range for this role is $89,200 to $178,400.

The base pay offered will be determined on factors such as experience, skills, training, location, certifications, education, and any applicable minimum wage requirements. Decisions will be determined on a case-by-case basis. In addition to the base salary, this position may be eligible for performance-based incentives.

We are excited to offer a competitive total rewards package which includes health and welfare benefits, tuition assistance, 401K savings and other retirement programs as well as employee assistance programs.