TrollEye Security

1 Job

8 Employees

About the Company

At TrollEye Security, we help organizations reduce risk, consolidate tools, and streamline compliance through a continuous, unified, and partnership-driven approach to exposure management. Our continuous testing process identifies, validates, and guides the remediation of exposures across your entire attack surface, from infrastructure and applications to supply chain and dark web risks. Every validated finding is managed through our integrated exposure management platform, centralizing visibility and streamlining remediation with role-based task distribution that keeps teams aligned and accountable. Through our partnership approach, we operate as an extension of your team, providing the collaboration, context, and cadence needed to sustain measurable improvement over time. Together, we help you move beyond reactive security toward a model of continuous visibility, validation, and resilience. Start your exposure management journey and experience how TrollEye Security simplifies cybersecurity through a continuous, unified, and partnership-driven approach.

Listed Jobs

Company Name: TrollEye Security
Job Title: Application Security Engineer (DevSecOps as a Service Lead)
Job Description: Application Security Engineer (DevSecOps as a Service Lead) Role Summary: Lead the DevSecOps as a Service program by integrating security into the software development lifecycle (SDLC), designing secure automation frameworks, and ensuring alignment with client development and operations teams. Focus on secure CI/CD pipelines, infrastructure as code (IaC) standards, vulnerability remediation, and continuous compliance automation. Expectations: - 5+ years’ experience in Application Security, DevSecOps, or Secure Software Engineering. - Bachelor’s degree in Computer Science, Cybersecurity, or a related technical field (or equivalent experience). - Proven ability to collaborate cross-functionally with development, operations, and security teams. Key Responsibilities: - Architect, implement, and maintain secure CI/CD pipelines using GitHub Actions, GitLab CI, Jenkins, or Azure DevOps. - Integrate SAST, DAST, SCA, container scanning, and secret detection tools into automated workflows. - Develop and enforce IaC security standards with Terraform and Ansible. - Conduct security reviews of application architectures, source code, and configurations. - Partner with teams to remediate vulnerabilities during the SDLC. - Automate compliance checks, drift detection, and threat modeling integration. - Provide mentorship and training on secure DevOps practices. Required Skills: - CI/CD pipeline design and secure deployment practices. - Proficiency in Terraform, Ansible, and automation frameworks. - Experience integrating security tools (e.g., SonarQube, Checkov, OWASP ZAP). - Containerization and cloud-native security (Docker, Kubernetes). - Scripting in Python, Go, Bash, or PowerShell. - Software supply chain security, secret management, and identity controls. Required Education & Certifications: - Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent practical experience). - No specific certifications required.

Dawsonville, United states

On site

Senior

12-11-2025