Cast & Crew
About Cast & Crew
At Cast & Crew we empower creativity and support the global entertainment industry for decades. We operate as a combined entertainment technology and services provider offering industry‑standard screenwriting accounting software, digital payroll products, data & reporting, and a host of creative tools. Information Security Engineer – Application Security
We are seeking a highly skilled and motivated Information Security Engineer specializing in Application Security, DevSecOps, and Automation to join our team. In this role you will design and implement security strategies across the software development lifecycle, automate security operations, and drive the integration of security into DevOps practices. Core Responsibilities
Embed security into the SDLC to ensure applications are secure by design. Build and automate DevSecOps pipelines to streamline secure software delivery. Develop and deploy security tools and workflows to enhance efficiency and scalability. Conduct proactive risk assessments and vulnerability management to mitigate potential threats. Advocate for “security as code” by integrating security controls into infrastructure‑as‑code and deployment scripts. Monitor and enhance security tools through custom scripting or integrations with other platforms. Partner with cross‑functional teams to foster a culture of security awareness and shared responsibility. Stay up‑to‑date with the latest security vulnerabilities, trends, and technologies. Key Qualifications
Bachelor’s degree in Computer Science, Cybersecurity, or a related field, or equivalent experience. 3+ years of experience in cybersecurity, with a focus on application security, DevSecOps, or automation. Strong understanding of secure software development lifecycle (SDLC) practices. Proficiency with security testing tools (e.g., Burp Suite, OWASP ZAP, SonarQube, Veracode, Checkmarx). Experience with CI/CD tools (e.g., Jenkins, GitLab CI/CD, GitHub Actions) and integrating security testing into pipelines. Familiarity with programming/scripting languages (e.g., Python, Java, Bash, or PowerShell). Strong knowledge of cloud security principles (e.g., AWS, Azure, GCP) and container security (e.g., Docker, Kubernetes). Experience with Infrastructure‑as‑Code tools (e.g., Terraform, Ansible). Knowledge of OWASP Top 10, CWE, and other security frameworks. Excellent problem‑solving and communication skills. Preferred Qualifications
Relevant certifications (e.g., OSCP, CISSP, CEH, CSSLP, or AWS Security Specialty). Experience with security orchestration, automation, and response (SOAR) tools. Familiarity with compliance frameworks (e.g., ISO 27001, SOC 2, PCI DSS). Hands‑on experience with vulnerability management tools and processes. Benefits
Cast & Crew provides a comprehensive package of employee benefits including medical, dental, vision, PTO, health and wellness programs, employee discounts, and more. Equal Opportunity
Cast & Crew is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture. We provide equal employment opportunities to all individuals based on job‑related qualifications and ability to perform a job, without regard to age, gender, gender identity, sexual orientation, race, color, religion, creed, national origin, disability, genetic information, veteran status, citizenship or marital status, and we maintain a non‑discriminatory environment free from intimidation, harassment or bias based upon these grounds.
#J-18808-Ljbffr
At Cast & Crew we empower creativity and support the global entertainment industry for decades. We operate as a combined entertainment technology and services provider offering industry‑standard screenwriting accounting software, digital payroll products, data & reporting, and a host of creative tools. Information Security Engineer – Application Security
We are seeking a highly skilled and motivated Information Security Engineer specializing in Application Security, DevSecOps, and Automation to join our team. In this role you will design and implement security strategies across the software development lifecycle, automate security operations, and drive the integration of security into DevOps practices. Core Responsibilities
Embed security into the SDLC to ensure applications are secure by design. Build and automate DevSecOps pipelines to streamline secure software delivery. Develop and deploy security tools and workflows to enhance efficiency and scalability. Conduct proactive risk assessments and vulnerability management to mitigate potential threats. Advocate for “security as code” by integrating security controls into infrastructure‑as‑code and deployment scripts. Monitor and enhance security tools through custom scripting or integrations with other platforms. Partner with cross‑functional teams to foster a culture of security awareness and shared responsibility. Stay up‑to‑date with the latest security vulnerabilities, trends, and technologies. Key Qualifications
Bachelor’s degree in Computer Science, Cybersecurity, or a related field, or equivalent experience. 3+ years of experience in cybersecurity, with a focus on application security, DevSecOps, or automation. Strong understanding of secure software development lifecycle (SDLC) practices. Proficiency with security testing tools (e.g., Burp Suite, OWASP ZAP, SonarQube, Veracode, Checkmarx). Experience with CI/CD tools (e.g., Jenkins, GitLab CI/CD, GitHub Actions) and integrating security testing into pipelines. Familiarity with programming/scripting languages (e.g., Python, Java, Bash, or PowerShell). Strong knowledge of cloud security principles (e.g., AWS, Azure, GCP) and container security (e.g., Docker, Kubernetes). Experience with Infrastructure‑as‑Code tools (e.g., Terraform, Ansible). Knowledge of OWASP Top 10, CWE, and other security frameworks. Excellent problem‑solving and communication skills. Preferred Qualifications
Relevant certifications (e.g., OSCP, CISSP, CEH, CSSLP, or AWS Security Specialty). Experience with security orchestration, automation, and response (SOAR) tools. Familiarity with compliance frameworks (e.g., ISO 27001, SOC 2, PCI DSS). Hands‑on experience with vulnerability management tools and processes. Benefits
Cast & Crew provides a comprehensive package of employee benefits including medical, dental, vision, PTO, health and wellness programs, employee discounts, and more. Equal Opportunity
Cast & Crew is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture. We provide equal employment opportunities to all individuals based on job‑related qualifications and ability to perform a job, without regard to age, gender, gender identity, sexual orientation, race, color, religion, creed, national origin, disability, genetic information, veteran status, citizenship or marital status, and we maintain a non‑discriminatory environment free from intimidation, harassment or bias based upon these grounds.
#J-18808-Ljbffr