Who We Are
Ivanti’s platform empowers organisations to stay productive, secure, and engaged wherever they are. We have offices globally - our employees span 25 countries. We automate, manage, secure, and service IT assets for companies leading the way in digital transformation.
Our Culture – Inspire, Innovate & Grow
At Ivanti, we thrive on innovation, collaboration and growth. We encourage all voices, nurture diverse perspectives, and empower our teams. We foster a workplace where your unique ideas and hard work deliver meaningful impact.
Job Summary
As a DevSecOps Engineer within our Product Security team, you will occupy an important role in ensuring the security, stability and scalability of our software products while contributing to the rapid development of new and innovative solutions.
You will collaborate closely with cross-functional teams, including developers, security researchers, and operations professionals to create and maintain a secure, efficient, and automated development pipeline.
Qualifications
· 8+ years of experience in the area/s of Development, DevOps, application security.
· Good understanding of SSDLC as well as development and integration tools and technologies uses as part of CI/CD pipelines.
· Ability to work in a self directed environment that is highly collaborative and cross functional.
· Knowledge of security concepts and terminology. Practical experience in securing software and defensive programming.
Key Responsibilities:
· Collaborate with development, operations, and security teams to design, implement, and maintain an effective DevSecOps strategy and process.
· Operate Dynamic and Static Code Analysis as well Software Composition Analysis (SAST/SCA/ DAST) tools.
· Integrate security tooling into the CI/CD pipelines and development lifecycle.
· Monitor and tune the performance and tuning of SCA, SAST, DAST, IAST.
· Build and manage connectors to ticketing systems like Jira, ADO.
· Security Automation: Develop and maintain security automation tools and scripts to streamline security processes as well as ensure consistent application of security controls across deployment pipelines and infrastructure.
· Champion continuous improvement of DevSecOps practices, processes, and tools.
· Create and maintain documentation for security tools, processes, and procedures.
About you:
· Want to make a difference.
· You are interested in automated ways of detecting software weaknesses and vulnerabilities. What makes certain code vulnerable and how to remediate the situation. How to build security in depth.
· You are motivated and quick learner who likes to understand new technologies.
· You are familiar with at least one widely used programming language (C# is currently good fit for the team) and are able pick up other programming languages.
· You understand software development life cycle and how to shift left security activities.
· Can explain complex topics to others. Can communicate with groups included in the lifecycle (Development, DevOps, SRE, Product Management).
· Can work with version control, perform code review, understand branching.
· You have created and edited CI/CD pipelines. Using bash/sh/pwsh scripts in YAML and other codified pipeline styles.
· You can sure the automated tools are used appropriately in the pipelines. Understand containerization in the build context as well as in runtime context.
· You know how to work with public security sources (NVD database, CWE, vendor specific information).
· For this role you should have a record of individual contributions without supervision and helping others
Inclusion at Ivanti We are an Equal Opportunity Employer, committed to building a diverse team and fostering an environment where everyone belongs. If you need adjustments to participate in the interview process, let us know at talent@ivanti.com —we’re here to help.