The Opportunity
"As a part of FICO’s highly modern and innovative analytics and decision platform, the Senior Software Security Engineer will help shape the next generation security for FICO’s Platform. You will address cutting edge security challenges in a highly automated, complex, cloud & microservices driven environments inclusive of design challenges and continuous delivery of security functionality and features to the FICO platform as well as the AI/ML capabilities used on top of the FICO platform" - Director, Cyber Security
What You’ll Contribute
Secure the design of next generation FICO Platform, its capabilities and services.
Provide full-stack security architecture design from cloud infrastructure to application features for FICO customers.
Work closely with product managers, architects and developers on the implementation of the security controls within products.
Oversee security aspects of Analytical Model Life Cycle, and influence stakeholders for adopting best security standards and implementations.
Proof the security implementations within infrastructure & application deployment manifests and the CI/CD pipelines.
Define required controls and capabilities for the protection of FICO products and environments.
Build & validate declarative threat models in continuous and automated manner.
Prepare the product for compliance attestations and ensure adherence to best security practices.
What We’re Seeking
Experience in architecture, security reviews and requirement definition for complex product environments.
Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.
Experience in threat modeling, code reviews, security testing, vulnerability detection, attacker exploit techniques, and methods for their remediation.
Hands-on experience with programming languages, such as: Java, Python, etc.
Experience of deploying services and securing cloud environments, preferably AWS
Experience of deploying and securing containers, container orchestration and mesh technologies (such as EKS, K8S, ISTIO).
Ability to articulate complex architectural challenges with the business leadership and product management teams.
Independently drive transformational security projects across teams and organizations.
Experience with securing event streaming platforms like Kafka or Pulsar.
Experience with ML/AI model security and adversarial techniques within the analytics domains.
Hands-on experience with IaC (Such as Terraform, Cloudformation, Helm) and with CI/CD pipelines (such as Github, Jenkins, JFrog).
Our Offer to You
An inclusive culture strongly reflecting our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others.
The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences.
Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so.
An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie.
Any Graduate