top of page

Principal Security Engineer

UAE - Dubai - United Arab Emirates

Job Type

Full Time

Workspace

Hybrid

About the Role

What you will be doing:

Work directly with product teams in building a security by design and by default mindset by defining a structured approach to security in line with the Application Security Program mandates
Develop design patterns, and code guidelines that meet business security and system requirements in line with the risk assessments, policies, and procedures
Be a thought leader and help the wider organization drive security solutions implementation in-alignment with other stakeholders
Drive feature implementations in line with the architecture via designs, coding, reviews and tests. Perform Proof of Concept (POC) activities as necessary
Lead DevSecOps implementation through technology, process and human upskilling including SAST, DAST, SCA, and penetration test results in collaboration with the developers.
Review current software security control measures and implement security enhancements for multiple cloud-based products
Participate in vulnerability investigations and become an extended arm to the Security Operation team

What you have:

Master’s degree in computer science or cyber security, a related field or equivalent demonstrated experience and knowledge
Minimum 7+ years of experience in engineering or software development or related fields.
Minimum 5 years hands-on product security role either as an architect, penetration tester or security engineer in cloud and application
Strong working knowledge of
software technologies such as C/C++, Java, .Net, python, etc.
Experience analyzing, using SAST, DAST, SCA and penetration tests.
Azure cloud
IOT and Operating system hardening using DISA STIGS and CIS benchmark
Experience ins secure software development or at least knowledge in secure coding practices and application security test report interpretation for various coding languages and multiple cloud services
Strong knowledge of secure software development lifecycle and practices including Agile methodologies for software development
Understanding of security by design principles and architecture level security concepts
Sound understanding and experience in implementing security public key Infrastructure (PKI)),
Experience implementing OWASP Top10 application security guidelines in cloud-based web applications
Experienced in generating, defining, and reviewing penetration test results through knowledge of standard methodologies and tools including environmental configuration definition, security analysis, threat modeling, and system security audits
Knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
Exposure to international privacy requirements & cross-industry trends

Requirements

We are looking for a Principal Product Security Engineer whom his primary responsibility will be to for design, build, test and implementing secure SDLC across the product development lifecycle.


This role requires deep knowledge of building product security program from scratch which includes writing SOP, SWI, designing training for developers and gaining the trust of the product teams through hands-on engagement. A deep understanding of web-based secure code principles, and IOT security is a pre-requisite. Candidates should have experience in FDA and EU MDR submission process.

About the Company

At AMD, we are dedicated to safeguarding our client against cyber threats. We recognize the distinct requirements and vulnerabilities of each enterprise, which is why we offer tailor-made solutions to shield your data and assets effectively.

​Our collaborative approach involves working closely with clients to devise a holistic cybersecurity strategy that harmonizes with their specific business objectives.

bottom of page