DevSecOps Engineer
Job number 9909
We are looking for a talented and experienced DevSecOps engineer.
As a DevSecOps engineer, you will have the opportunity to build, implement and operate cloud infrastructures, define a secure architecture, automate product security and CI/CD processes as well as engage in DevOps and security activities.
Responsibilities within the role:
Assessing security risks and vulnerabilities in the existing architecture and working closely with infrastructure groups to prioritize and fix the risk.
Leverage and improve existing security tools, identify gaps and recommend new solutions.
Implementation of security tools in CI/CD pipelines.
Assisting in the investigation of security-related incidents.
Act as a focus or training center for cloud security related queries and strategies.
Working closely with the various DevOps teams, guiding the security and architecture of new infrastructure services.
Requirements:
5+ years of practical experience as a DevSecOps engineer with extensive knowledge of network security, including firewalls, WAF, PKI, IDP, application security and more.
Experience with at least one major public cloud platform: Azure, AWS, or GCP.
Experience with IaC and CM tools such as Terraform, CloudFormation and Ansible.
Strong security tools, process expertise, including KMS, GuardDuty, Cloudtrail, SSO, as well as with tools such as Snyk / Wiz / Orca / Aqua.
Experience in cloud computing technologies, IaC, preferably AWS and TF.
Solid experience with parts of our technology stack including: GitOps, CI/CD and tools such as ArgoCD/Argo Workflows/GitHub Actions/Jenkins.
Possession of one or more security-related certifications, such as CKS, CISSP, CEH, CISA, CISM, SECURITY.
Experience in handling security alerts and responding to incidents.
Experience with compliance requirements (e.g. SOC2, ISO27001, HIPAA, PCI, etc.).
Proven ability to collect and maintain evidence for security and compliance.
Experience coding in PowerShell, Bash, Python, Go or equivalent.
Experience with DevOps practices, CI/CD, version control and an understanding of how to implement security controls into their lifecycle.
Strong background in Linux or Windows and technologies related to IT systems.
Extensive experience with Linux and use of languages such as Shell/Bash, Python.
Experience in various Azure services such as: Service Fabric, AKS, Virtual Machine scale set, Virtual Networks, Azure SQL, Azure AD, App Service, Function apps, ACI and more.
Experience with HashiCorp Vault and Palo Alto Firewall.
Experience with Kubernetes, containers and microservices.