DevSecOps Research and Development Engineer

About the position

The DevSecOps Research and Development Engineer at Penn State is responsible for integrating security practices into the DevOps process. This role involves collaborating with cross-functional teams to design, implement, and maintain secure software development pipelines. The engineer will work on automating security testing and compliance checks, ensuring that security is embedded throughout the software development lifecycle. The position requires a strong understanding of both development and security principles, as well as the ability to communicate effectively with both technical and non-technical stakeholders. In this role, the engineer will also be tasked with researching and evaluating new security tools and technologies, providing recommendations for their integration into existing systems. The engineer will participate in threat modeling and risk assessment activities, helping to identify potential vulnerabilities and develop mitigation strategies. Additionally, the engineer will contribute to the development of security policies and best practices, ensuring that the organization adheres to industry standards and regulations. The ideal candidate will have a passion for security and a desire to stay current with emerging threats and technologies. They will be expected to contribute to a culture of security awareness within the organization, providing training and support to other team members as needed. This position offers an exciting opportunity to work on cutting-edge security initiatives in a collaborative and innovative environment.