Security Engineer – Platform & Tooling
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
AGAPI seeks a Senior Security Engineer to design, build, and maintain automation platforms and shared services for Security Operations and secure software development. The role requires strong proficiency in Python or Go, DevSecOps practices, and experience with cloud-native environments, CI/CD, and security tooling.
Key Skills for This Role
Responsibilities
- Build and maintain security automation platforms that support Security Operations and Engineering teams
- Integrate SAST, DAST, SCA, and IaC security controls into CI/CD pipelines
- Develop automated workflows for vulnerability management, findings triage, and remediation tracking
- Design and manage telemetry ingestion pipelines for SIEM, XDR, and security analytics platforms
- Create and maintain reusable security artifacts, including Nuclei templates, Sigma rules, and testing frameworks
- Automate deployment and management of cloud based security labs, sandboxes, and testing environments
- Implement Infrastructure as Code (Terraform, CloudFormation, Ansible) to enable scalable and secure infrastructure deployments
- Secure containerized and cloud native environments running on Docker, Kubernetes, AWS, and Azure
- Monitor platform health, reliability, and performance through automation, SLIs/SLOs, and self healing mechanisms
- Collaborate with Security, DevOps, and Engineering teams to embed security throughout the software development lifecycle
- Produce security metrics, dashboards, and reporting to improve visibility and risk management
- Develop technical documentation and self service tooling to enhance operational efficiency and user adoption
Requirements
- Strong proficiency in Python or Go, with experience developing automation, integrations, and security tooling
- Hands on experience implementing DevSecOps practices and integrating security controls into CI/CD platforms such as GitHub Actions, GitLab CI, Jenkins, or Azure DevOps
- Strong understanding of application security testing, including SAST, DAST, and vulnerability management using tools such as OWASP ZAP, Semgrep, Nuclei, or equivalent
- Experience securing and deploying cloud native workloads using Docker, Kubernetes, and AWS and/or Azure
- Experience with Infrastructure as Code and automation frameworks such as Terraform, CloudFormation, or Ansible
- Proven ability to collaborate effectively with both software engineering and security operations teams
- Experience using AI tools and Large Language Models (LLMs) to enhance security engineering, DevSecOps, and software development workflows
- Understanding of secure and responsible AI adoption, including security, privacy, and governance considerations
Full Job Posting
About the Role
- We are seeking a highly skilled Senior Security Engineer – Platform & Tooling to design, build, and maintain the automation platforms and shared services that support our Security Operations and secure software development lifecycle.
- This role is responsible for enabling Red, Blue, and Purple Teams through scalable tooling, automation, telemetry pipelines, and security engineering practices.
- The successful candidate will play a key role in embedding security into development workflows, reducing operational overhead, and improving the efficiency and effectiveness of security programs across the organization.
Key Responsibilities
- Build and maintain security automation platforms that support Security Operations and Engineering teams.
- Integrate SAST, DAST, SCA, and IaC security controls into CI/CD pipelines.
- Develop automated workflows for vulnerability management, findings triage, and remediation tracking.
- Design and manage telemetry ingestion pipelines for SIEM, XDR, and security analytics platforms.
- Create and maintain reusable security artifacts, including Nuclei templates, Sigma rules, and testing frameworks.
- Automate deployment and management of cloud based security labs, sandboxes, and testing environments.
- Implement Infrastructure as Code (Terraform, CloudFormation, Ansible) to enable scalable and secure infrastructure deployments.
- Secure containerized and cloud native environments running on Docker, Kubernetes, AWS, and Azure.
- Monitor platform health, reliability, and performance through automation, SLIs/SLOs, and self healing mechanisms.
- Collaborate with Security, DevOps, and Engineering teams to embed security throughout the software development lifecycle.
- Produce security metrics, dashboards, and reporting to improve visibility and risk management.
- Develop technical documentation and self service tooling to enhance operational efficiency and user adoption.
Required Qualifications
- Strong proficiency in Python or Go, with experience developing automation, integrations, and security tooling.
- Hands on experience implementing DevSecOps practices and integrating security controls into CI/CD platforms such as GitHub Actions, GitLab CI, Jenkins, or Azure DevOps.
- Strong understanding of application security testing, including SAST, DAST, and vulnerability management using tools such as OWASP ZAP, Semgrep, Nuclei, or equivalent.
- Experience securing and deploying cloud native workloads using Docker, Kubernetes, and AWS and/or Azure.
- Experience with Infrastructure as Code and automation frameworks such as Terraform, CloudFormation, or Ansible.
- Proven ability to collaborate effectively with both software engineering and security operations teams to deliver scalable security solutions.
- Experience using AI tools and Large Language Models (LLMs) to enhance security engineering, DevSecOps, and software development workflows.
- Ability to identify and implement AI driven automation opportunities to improve efficiency, reduce manual effort, and enhance security operations.
- Understanding of secure and responsible AI adoption, including security, privacy, and governance considerations.
Preferred Qualifications
- Experience implementing OWASP DSOMM.
- GIAC Cloud Security Automation (GCSA) certification.
- HashiCorp Certified: Terraform Associate.
- Certified Kubernetes Administrator (CKA).
- DevOps or DevSecOps certifications such as DSOE, CDP, or equivalent.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at AGAPI
Senior Product Marketing (Work in Georgia)
Dubai, UAE
AGAPI is seeking an experienced Senior Product Marketing Specialist to drive product growth in the gaming industry. The role involves developing data-driven marketing strategies, optimizing product positioning, and leadi
Senior Business Analyst
Dubai, UAE
AGAPI is seeking a Senior Business Analyst to collaborate with product development teams, define feature structures, and assess technical feasibility. The role requires relocation to Georgia after probation in Dubai. Ide
Talent Acquisition Specialist
Dubai, UAE
AGAPI seeks a Talent Acquisition Specialist to oversee end-to-end hiring in Dubai. The role involves sourcing, screening, interviewing, and onboarding candidates while collaborating with hiring managers to develop recrui
Graphic Designer
Dubai, UAE
AGAPI is seeking a Graphic Designer to bring creativity and consistency to brand identity across digital platforms. The role involves transforming business and user requirements into engaging visual designs, producing wi
Full Stack Developer
Dubai, UAE
AGAPI is seeking a Full Stack Developer to design, develop, and deliver scalable web applications. The role requires expertise in React.js or Vue.js for frontend and Java (Spring Boot) or Golang for backend, with at leas
Enterprise Resources Planning Specialist
Dubai, UAE
AGAPI is seeking an ERP Operation Specialist (Accounting) to ensure smooth ERP system operation and support accounting processes. The ideal candidate has a Bachelor's degree in Accounting or related field, 2-10 years of
AI Offensive Security Engineer
Dubai, UAE
AGAPI is seeking an AI-Driven Offensive Security Engineer to combine penetration testing expertise with AI-powered tools and LLMs for vulnerability research, exploit development, and red teaming. The role requires 5+ yea
Senior Security Penetration Tester
Dubai, UAE
AGAPI seeks a Senior Security Penetration Tester for a Cyber Security project in Georgia. The role requires an adversarial mindset to perform deep-dive manual exploitation across web applications, mobile platforms, cloud
Senior Product Marketing (Work in Georgia)
Dubai, UAE
Senior Business Analyst
Dubai, UAE
Talent Acquisition Specialist
Dubai, UAE
Graphic Designer
Dubai, UAE
Full Stack Developer
Dubai, UAE
Enterprise Resources Planning Specialist
Dubai, UAE
AI Offensive Security Engineer
Dubai, UAE
Senior Security Penetration Tester
Dubai, UAE