← Back to AppSec
R
Recorded Future
www.recordedfuture.com

SDLC Security Engineer, Product Security

AppSecOn-site

What You’ll Do:

  • SDLC Design and Optimization: Design, document, and champion an end-to-end Secure SDLC that aligns with industry best practices, regulatory requirements, and the specific needs of our product portfolio.
  • Security Automation and Tooling: Identify, evaluate, and integrate security tools and controls (e.g., SAST, DAST, SCA, IAST, secret scanning) directly into the CI/CD pipelines to automate security gates and checks.
  • Balancing Security and Velocity: The core goal is to build an SDLC that expertly maximizes developer productivity and agility while simultaneously ensuring that all security requirements placed upon our products—including data protection, compliance, and threat mitigation—are consistently met and verifiable.
  • Requirement Definition: Translate high-level security policies and risk management objectives into clear, actionable, and testable technical requirements for development teams.
  • Developer Enablement: Develop and deliver training, guidelines, and documentation to empower developers to write secure code from the outset, adopting a "Security as Code" mindset.
  • Collaboration and Reporting: This role requires close collaboration with all engineering disciplines and involves participation in the Platform Security team's daily operations, including incident response and threat modeling as needed.
  • Reporting Structure: This vital role reports directly to the Director of Platform Security, who is based in our Gothenburg office.

What You’ll Bring:

  • 3+ years of relevant professional experience
  • Proven background in software development, specifically in designing and implementing robust SDLC processes and CI/CD pipelines
  • Solid expertise in computer security principles
  • A strong ability to assess risks and make informed decisions
  • A keen interest in finding and balancing security needs with developer productivity
  • Excellent communication skills and the ability to effectively build relationships across different teams

Why should you join Recorded Future? Recorded Future employees (or “Futurists”), represent over 40 nationalities and embody our core values of having high standards, practicing inclusion, and acting ethically. Our dedication to empowering clients with intelligence to disrupt adversaries has earned us a 4.6-star user rating on G2 and more than 50% of Fortune 100 companies as customers. Want more info?

Blog & Podcast: Learn everything you want to know (and maybe some things you’d rather not know) about the world of cyber threat intelligence

Linkedin, Instagram & Twitter: What’s happening at Recorded Future

The Record: The Record is a cybersecurity news publication that explores the untold stories in this rapidly changing field

Timeline: History of Recorded Future

Recognition: Check out our awards and announcements

Recorded Future: From treadmill eureka moment to global threat intelligence powerhouse - YouTube

Tap to unmute