Share this Job

Principal Software Engineer, Information Security

Apply now »

Date: Jun 10, 2021

Location: Charlotte, NC, US, 28216 Washington, DC, US, 20004 Tewksbury, MA, US, 01876 Corning, NY, US, 14831 New Jersey, NJ, US

Company: Corning

Requisition Number: 46895

 

Corning is one of the world’s leading innovators in materials science. For more than 160 years, Corning has applied its unparalleled expertise in specialty glass, ceramics, and optical physics to develop products that have created new industries and transformed people’s lives.

Corning succeeds through sustained investment in R&D, a unique combination of material and process innovation, and close collaboration with customers to solve tough technology challenges.

The global Information Technology (IT) Function is leading efforts to align IT and Business Strategy, leverage IT investments, and optimize end to end business processes and associated information integration technologies.  Through these efforts, IT helps to improve the competitive position of Corning's businesses through IT enabled processes.  IT also delivers Information Technology applications, infrastructure, and project services in a cost efficient manner to Corning worldwide.

Location: Open to remote

 

Data, automation and advanced analytics technologies are drastically transforming industrial manufacturers beyond point process automation to systemic, highly contextualized and data driven systems. Corning is building the foundational digital infrastructure for these company-wide efforts, and are looking for passionate, hard-working, and talented staff-level software engineers that will design that foundation for reuse, velocity and scale.

 

Overview: The Principal Software Engineer, DevSecOps will report to Corning’s Chief Information Security Officer. The ideal candidate is a hands-on professional software engineer that is also a subject matter expert in cyber security practices, software development toolchains and distributed systems architecture. You will partner with our agile digital platform teams and the broader Corning software development community to secure our software by default, rather than rely solely on policy-based gatekeeping. This involves defining, implementing and operating a platform, practices and support model that leverages DevSecOps principles as follows:

(1) Define and establish world-class DevSecOps tools and practices for each of our native and hybrid cloud-based digital platforms, centered on our agile toolchain platform

(2) Identify process and technology gaps in current capability and work with the development teams to address them

(3) Pilot these new capabilities technically, documenting and hardening them for large-scale adoption, then working with technical teams across the company to get them adopted. Proven, world class software engineering and DevSecOps skills are essential to this role, including active working expertise in DevSecOps toolchain administration, pipelines, runners, containers & container orchestration, sidecars & service mesh, automation, infrastructure as code, continuous integration and continuous deployment, application performance monitoring and change management.  

 

 Responsibilities:

As our Principal Software Engineer, DevSecOps, your main responsibilities will be to:

  • Bake security into the SDLC by architecting security solutions, driving secure code design and review, and performing penetration testing of applications
  • Define security scanning best practice (SCA, SAST & DAST) and work with the agile toolchain team to design, deploy and operate these capabilities for the Corning development community
  • Define container security best practice, and work with the platform teams to design, deploy and operation these capabilities for the Corning development community
  • Identify security visibility best practice and work with the agile toolchain team to develop, deploy and operate the generalized monitoring solutions needed for same
  • Design automated DevSecOps enabled processes and templates for implementation, security, monitoring, alerting and operations using Terraform, Ansible, YAML, Python and environment-specific scripting languages
  • Work with development teams across Corning to raise awareness, education and actual adoption of DevSecOps best practices and tools
  • Lead DevSecOps inner-sourcing efforts by developing and supporting generalized DevSecOps templates and actively participating in information sharing efforts with the broader developer community
  • Report and respond to any security breaches or viruses
  • Triage and categorize network intrusions and incidents
  • Perform periodic risk reviews and audits
  • Research new attack techniques and vectors and simulate them into the environment
  • Continually document all actions and work to define repeatable actions that can be automated
  • Continually improve our DevSecOps monitoring, metrics and automated response capabilities
  • Provide direct and responsive support for security incidents and other urgent analytic, development or operational needs
  • Debug security related production issues across services, at all component levels and respond to after-hours escalations
  • Use our toolchain service offering for your day-to-day activities and work with the toolchain team to continually improve it

 

Education, Experience, and Certifications:

  • Graduate degree in Computer Science or equivalent area of technical study
  • Demonstrated career progression from professional software engineering to cybersecurity and DevSecOps
  • Demonstrated expert level expertise in PKI and cryptography, security assessment tools, pen testing
  • 10 years of hands-on production programming experience with agile software development practices and tools in a variety of languages, such as Python, .NET/C#, Go, Java, JavaScript/Node.JS
  • 8-10 years of production security engineering and DevOps experience across both cloud and on-premise environments
  • AWS Security, DevOps and Solution Architect certifications within the last 24 months strongly preferred, with a preference for professional grade certification
  • Additional DevOps certifications by one or more major cloud infrastructure providers and/or CNCF related technology providers within the last 24 months

 

Technical Qualifications:

  • Minimum 10 years of infrastructure and application platform automation experience, at least 8 years of that managing large scale production environments
  • A demonstrated deep understanding of the AWS Well Architected Framework
  • A demonstrated deep understanding of kubernetes and docker internals
  • A minimum of 5 years hands-on staging and production experience in each of the following areas
  • Infrastructure and configuration management including Terraform and Ansible
  • Administering and deploying development CI/CD tools such as GitLab, Jenkins, or Azure DevOps.
  • Containers and container orchestration services, especially Docker & Kubernetes
  • Systems administration scripting methods such as Python, Bash or PowerShell.
  • Supporting Windows and Linux operating system environments
  • Network architecture, including load-balancing, DNS, BGP, IPSec VPNs

 

Other Qualifications:

  • Demonstrated systems perspective when analyzing problems, thinking about overall operation, failure modes and how to address these problems proactively
  • A strong sense for the importance of documentation, and the importance of not having to learn things twice
  • Ability to work in an agile product team environment and balance a diverse set of stakeholder requests
  • Excellent oral and written communication skills with an ability to break down complex technical systems to help business partners understand the value
  • Strong technical collaboration and communication skills as well as the ability to drive cultural change and adoption of best practices through community participation
  • Ability to collaborate with other teams across the company, defining technology roadmaps, sharing experiences and lessons learned for continual improvement
  • Excellent problem-solving and troubleshooting skills
  • Process-oriented with great documentation skills

 

Travel: Up to 25%

 

 

We prohibit discrimination on the basis of race, color, gender, age, religion, national origin, sexual orientation, gender identity or expression, disability, veteran status or any other legally protected status.

 

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.


Nearest Major Market: Charlotte