Job Title: DevSecOps Engineer

Roles & Responsibilities:

• Security Management:
• Remediate potential vulnerabilities, ensuring data is encrypted at rest and in motion.
• Participate in routine threat detection and response efforts.
• Analyze the SDLC pipeline for security issues from development through to post-production.
• Identify and implement solutions to ensure secure access for both end-users and internal employees.
• Ensure security best practices are followed, implementing and maintaining industry-leading security protocols.
• Infrastructure and Automation:
• Build and set up new infrastructure as code.
• Work on automating and improving development and release processes.
• Ensure systems are secure against threats by implementing proactive measures.
• Evaluate solutions to guide the team in making build/buy/adopt OSS decisions.
• Development Collaboration:
• Work closely with software developers and engineers to ensure development aligns with security processes and functions as intended.
• Identify technical problems and develop software updates as needed.
• Data Handling and Monitoring:
• Establish and monitor best practices for handling customer data, managing internal employee access, and maintaining production VPCs and supporting infrastructure.
• Project Management:
• Plan projects and participate in project management decisions.

Requirements:

• Experience:
• 5+ years of relevant work experience in a DevSecOps role.
• Extensive experience with infrastructure as code tools like Terraform.
• Strong background in Linux/Unix administration.
• Experience with CI/CD pipeline setup and configuration management using open-source tools.
• Proven experience in containerization (Docker) and container orchestration (Kubernetes).
• Hands-on experience with identifying and remediating vulnerabilities through Security Command Center.
• Technical Skills:
• Proficiency in scripting languages such as Shell, Python, etc.
• Proficiency with modern authentication and authorization tools.
• Deep understanding of securities and best practices for SaaS products.
• Familiarity with AWS / GCP environments.
• Experience in automating and integrating security operations into DevOps processes.
• Strong knowledge of industry-standard release automation tools and processes.
• Soft Skills:
• Strong interpersonal and teamwork skills in a highly collaborative environment.