Hello, I’ve recently taken a job at a BiG TeCh company. I believe the title is Software Engineer, and I’ll be on the compliance team for their web apps. I’ve been told this means building tools and processes to make sure engineers write compliant code, mostly security but will also cover privacy regulations. I know my boss mentioned static analysis, and they have some tool they’re re-doing the architecture for to microservices (I think it’s a big tool that runs on like 300 machines). I come from a development background with little to no experience in security. Wondering what my duties will be like, how much coding is there (I don’t want to just be running static analysis using other people’s software, I want to build my own), what should I know and practice before I go in, and also what does this field sound like so I can learn more? Appsec? Compliance (they said compliance a lot) product security? I dunno. Also odds of transferring from this role back to a product engineer?