Security Engineer is an interesting title. Across our customers, it has different meanings to different people. At one end of the spectrum, it is a synonym for a security analyst, which we think of as a skilled resource focused on a very specific portion of security – maybe monitoring the SIEM, maybe running static analysis, maybe feet on the ground doing vulnerability management. At the other end of the spectrum, security engineering is software engineering around security related features.
If you know Jemurai well, you know we focus at the engineering end of the spectrum. We’re developers at heart, working on security. We’ve increasingly engaged in projects where writing code to do security has been foundational to the role we’re in.
As we have grown, we have started to extract some of the most common of these engineering tasks – things like:
- Improving application security signal
- Managing secrets in Vault
- Broadening input validation
- Data protection in big data environments.
Clients have appreciated not just advice or gap analysis, but implementation help doing this work. Turns out it is extremely rewarding as well.