Ingram Micro
Join our Talent Network

Auf unserer Website kommen Cookies zum Einsatz, um die Inhalte für Sie zu optimieren. Klicken Sie hier, um Informationen zu Cookies und zur Anpassung der zugehörigen Einstellungen zu erhalten. Durch Nutzung dieser Website ohne Anpassung der Einstellungen stimmen Sie der Verwendung dieser Cookies zu.

Skip to main content

Principal, Software Security Engineer (AppSec / DevSecOps)

Taguig City, Philippinen
Job-ID: 57887



Ingram Micro touches 80% of the technology you use every day with our focus on Technology Solutions, Cloud, and Commerce and Lifecycle Solutions. With $50 billion in revenue, we have become the world’s largest technology distributor with operations in 64 countries and more than 35,000 associates.   

At Ingram Micro, we believe that Security must be part of our software DNA, delivered through SSDLC and DevSecOps. As Principle, Software Security Engineer, you will provide technical leadership to other team members, influence cross-organizational positive changes as it pertains to SSDLC and DevSecOps. If you are passionate about building a Culture of Security within Agile, CI/CD and DevSecOps come join our team!  

Position Summary 

  • Integrated Security SME within the SSDLC to ensure security is always included at every phase  
  • Perform application/software security risk assessments for custom developed code 
  • Gain deep insight into the software being developed to ensure security is part of the value chain 
  • Partner with the Cloud Security Operations Engineering Teams for frictionless release handoff within DevSecOps 
  • Lead application security reviews and threat modeling, including code review and dynamic testing 
  • Lead the delivery of the secure software delivery framework (SSDF) through building of security technical roadmap 
  • Own and perform application/software security vulnerability assessments   
  • Lead in development of automated security testing to validate that secure coding best practices are being used   
  • Champion security recruiting activities with leadership 
  • Perform assessments of SDLC processes, guide and advise software development teams as SMEs in application security at every phase of the SSDLC  
  • Develop and deliver application/software security training and outreach to build security champions within the organization 

Job Qualifications:  

  • Must Have

    • Strong programming experience with the ability to code exploits in at least one language; Java, C++, C#, Ruby, preferably on a Linux/Unix platform to be able to target security weaknesses
    • Strong understanding and experience with common security libraries, security controls, and common security flaws
    • Strong experience working closely with developers within SSDLC leading secure software development project and building a SSDF


    Nice To Have

    • Experience working with vulnerability assessment, SAST, DAST, CSA tools
    • Be a subject matter expert (SME) of at least 1 technical area impacting the security software
    • Proven experience with threat modeling as well as software security risk assessment, converting the data into threat reports and action plans
    • Experience with standards, frameworks, and certifications such as NIST SSDF, OWASP Top 10 and ASVS, BSIMM, ISO27034, ISO27001, CSA STAR, SOC2 and PCIDSS  

Education & Experience 

  • Four-year degree in software or security engineering or related field    
  • Minimum 8 years of experience in software development and/or security including a minimum of 5 years of experience including offensive security, software development, application security 
  • Preferred Certifications: CSSLP, CSDP, CEH, CISSP, CCSP, OSCP, OSWE, GPEN, GXPN 

Other Information 

  • Pass a background check 
  • Pass a proficiency exam related to the role 
Ingram Micro


Erhalten Sie Updates zu den neuesten Stellenangeboten, die zu Ihren Fähigkeiten passen.

Heute anmelden