Product Security Developer
Grow
Duties & Responsibilities
Security Analysis & Risk Assessment:
Conduct in-depth security reviews of software architectures, APIs, and cloud-native environments (e.g., Kubernetes, containers, and serverless systems).
Identify, prioritize, and mitigate vulnerabilities using modern threat modeling and AI-assisted code analysis tools.Secure SDLC & DevSecOps Integration:
Embed security within CI/CD pipelines using automated scanning, IaC security checks, and compliance-as-code frameworks.
Collaborate with developers and DevOps engineers to ensure security automation across build, test, and deployment stages.Cloud and API Security:
Implement best practices for securing APIs, microservices, and multi-cloud applications.
Ensure robust authentication, authorization, and encryption strategies (OAuth 2.0, OpenID Connect, mTLS).AI & Supply Chain Security:
Evaluate dependencies and third-party components for supply chain risks.
Use AI/ML-driven tools to detect anomalies and vulnerabilities in source code and runtime environments.Security Tooling & Incident Response:
Evaluate, select, and integrate modern security platforms (e.g., GitHub Advanced Security, Snyk, Prisma Cloud).
Support incident response through automated alerts, runtime monitoring, and post-incident analysis.
Knowledge, Skills & Abilities
Strong understanding of secure coding principles, DevSecOps, and threat modeling methodologies (e.g., STRIDE, PASTA).
Expertise in AI-assisted vulnerability detection, API and microservice security, and secure cloud configuration.
Familiarity with IaC tools (Terraform, CloudFormation) and their security implications.
Hands-on experience with security automation, compliance frameworks (NIST 800-53, ISO 27001, SOC 2), and zero trust architectures.
Excellent collaboration and communication skills to guide engineering teams and influence security culture.
Strategic thinker capable of aligning AppSec practices with business goals and emerging regulatory landscapes (e.g., GDPR, CCPA, PCI DSS v4.0).
Continuous learner who stays current with evolving threats, tools, and frameworks in the AppSec ecosystem.
Qualifications
3+ years of experience in software development or DevSecOps with a security emphasis.
Proficiency in one or more languages: Python, Java, C/C++, JavaScript/TypeScript, or Go.
Experience with cloud platforms (AWS, Azure, GCP) and their native security services.
Bachelor's degree in Computer Science, Cybersecurity, Information Security, or equivalent experience.
Certifications preferred: CSSLP, GCP/AWS Security Specialty, OSWE, or GIAC GCSA.
#LI-MG1 #LI-HYBRID
About Epicor
At Epicor, we’re truly a team. Join 5,000 talented professionals in creating a world of better business through data, AI, and cognitive ERP. We help businesses stay future-ready by connecting people, processes, and technology. From software engineers who command the latest AI technology to business development reps who help us seize new opportunities, the work we do matters. Together, Epicor employees are creating a more resilient global supply chain.
We’re Proactive, Proud, Partners.
Whatever your career journey, we’ll help you find the right path. Through our training courses, mentorship, and continuous support, you’ll get everything you need to thrive. At Epicor, your success is our success. And that success really matters, because we’re the essential partners for the world’s most essential businesses—the hardworking companies who make, move, and sell the things the world needs.
Competitive Pay & Benefits
Health and Wellness: Comprehensive health and wellness benefits designed to support your overall well-being.
Internal Mobility: Opportunities for mentorship, continuing education, and focused career goal setting, with 25% of positions filled internally.
Career Development: Free LinkedIn Learning licenses for everyone, along with our Mentoring Program to boost your personal development.
Education Support: Geographically specific programs to balance the cost of education with the benefits of continued learning and personal development.
Inclusive Workplace: Collaborate with a diverse team in an inclusive, global workplace that fosters innovation and celebrates partnership.
Work-Life Balance: Policies built on mutual trust and support, encouraging time off to rest, recharge, and reconnect.
Global Mobility: Comprehensive support for international relocations and permanent residency processes.
Equal Opportunities and Accommodations Statement
Epicor is committed to creating a workplace and global community where inclusion is valued; where you bring the whole and real you—that’s who we’re interested in. If you have interest in this or any role- but your experience doesn’t match every qualification of the job description, that’s okay- consider applying regardless.
We are an equal-opportunity employer.
Recruiter:
Martin Garcia Jr.