Security Engineer (Platform&Tooling)-Relocate to Dubai

Top 3 reasons to join us

• Competitive salary with housing & living support
• Collaborate with team of diverse nationalities
• Opportunity to become a key member in UAE team

Job description

Position Overview

The Security Engineer, Platform & Tooling owns the shared automation backbone that serves both security-operations teams (Red, Blue, Purple) and the product SDLC. The mandate is twofold:

1. Eliminate operational toil by building reliable pipelines for scans, telemetry, and evidence management.
2. Embed security into DevOps workflows (DevSecOps) so vulnerabilities are identified and remediated early.

Core Responsibilities

1. CI/CD & DevSecOps Automation

• Integrate SAST (Semgrep), DAST (ZAP, Burp), and SCA scanners into GitHub/GitLab pipelines.
• Enforce IaC and container-image checks (Terraform, CloudFormation, Dockerfile linters).
• Publish build-stage security metrics (OWASP risk tags, pass/fail gates) to engineering dashboards.

2. Offensive & Defensive Tooling

• Orchestrate bulk scans (ZAP, Nuclei, Semgrep) outside the SDLC for red-team engagements.
• Parse SARIF/JSON outputs and route findings to DefectDojo and Jira with de-duplication logic.

3. Telemetry Ingestion & SIEM/XDR Pipelines

• Maintain schemas, enrichment, and data-quality checks for Windows/M365, AWS, and Azure logs.
• Monitor pipeline health via automated SLIs/SLOs; trigger self-healing routines where feasible.

4. Reusable Artefact Curation

• Standardize Nuclei templates, Burp/ZAP add-ons, Sigma rules, and threat-hunt notebooks.
• Version and distribute through an internal registry; provide CLI tooling for one-command deployment.

5. Lab & Sandbox Infrastructure

• Operate disposable AD forests, cloud sandboxes, and target containers for red/purple exercises.
• Provide “one-click” Terraform/Ansible scripts that bootstrap environments in < 15 minutes.

6. Process Optimization & Practitioner UX

• Conduct quarterly time-motion studies to locate manual pain points.
• Produce concise documentation and in-tool help to maximize adoption by security analysts and developers.

7. Metrics & Continuous Improvement

• Report KPIs (see below) to leadership; maintain a roadmap aligned with both Ops and SDLC priorities.

Your skills and experience

Required Qualifications

• Programming: Advanced proficiency in Python or Go for pipeline tooling and API integrations.
• CI/CD & DevOps: Demonstrable experience with Jenkins, GitHub Actions, GitLab CI, or Azure DevOps; familiarity with GitOps patterns.
• Security Scanners & Formats: Hands-on with ZAP, Semgrep, Nuclei, SARIF/JSON, CycloneDX, SBOMs.
• Container & Cloud: Docker/Kubernetes, plus AWS or Azure deployment experience; image-hardening and runtime-security controls.
• Data Engineering: Log parsing, schema mapping, and streaming (Kafka, Kinesis, or equivalent).
• IaC & Configuration Management: Terraform, CloudFormation, Ansible, or similar.
• Collaboration: Proven record of working with both software-engineering squads and security-operations teams, translating requirements into intuitive tooling. 

Preferred Credentials

• Experience with implementing OWASP DSOMM
• GIAC Cloud Security Automation (GCSA)
• HashiCorp Certified: Terraform Associate
• Certified Kubernetes Administrator (CKA)
• DevOps or DevSecOps-specific certifications (e.g., DSOE, CDP)

Soft Skills:

• Strong proficiency in both written and spoken English.
• Adaptability to thrive in dynamic, fast-paced environments and remote work settings.
• Effective team player with excellent collaboration and interpersonal skills.
• Ability to perform under pressure with a positive attitude and a focus on team success.
• Demonstrates high levels of responsibility, reliability, and accountability.
• Willingness and ability to travel internationally when required.

Why you'll love working here

We go the extra mile to ensure your experience working onsite in the UAE is seamless, rewarding, and enriching:
• Flexible Work Hours: Enjoy a balanced lifestyle with a 6-hour workday, from 10:00 AM to 5:00 PM, including a 1-hour lunch break.
• 30 Days of Paid Leave: Accumulate your annual 30-day leave for longer holidays, travel adventures, or quality time with family.
• Flight Benefits: We provide a round-trip flight to Dubai when you onboard, plus two return flights to Vietnam each year so you can stay close to home while building a global career.
• Supported Living: We take care of your accommodation and support daily living expenses to ensure a comfortable, stress-free experience from day one. Our team will support you every step of the way.
• Visa & Legal Assistance: We sponsor your visa and handle all required legal procedures, giving you peace of mind throughout the relocation process.
• Modern Central Office: Our office is in the heart of vibrant Dubai, with easy access to metro lines, shopping malls, green parks, and world-class amenities.
• Onsite Support: You’ll have the ongoing support of our HR and admin teams, dedicated to helping you settle in and thrive — both professionally and personally.
________________________________________
If you’re passionate about taking your tech career to an international stage — we’d love to hear from you.