DevSecOps Engineer

September 22

Apply Now

Receive Emails with Similar Jobs

AssureSoft

WebsiteLinkedInAll Job Openings

Leading the Software Outsourcing Industry

Nearshore Software Development • Software Development • Nearshore Software Testing • Software Quality Assurance and Testing • Mobile Development

201 - 500

Description

• Offer expertise on best practices for infrastructure as code (IaC), covering Identity and Access Management, cloud firewall settings, logging, and encryption for data in transit and at rest, ensuring the security of cloud resources. • Review and evaluate the security of cloud infrastructure and automation scripts. • Identify, evaluate, and assist technical teams in remediating vulnerabilities in code, libraries, and infrastructure. • Collaborate with engineering teams to prioritize and address vulnerabilities based on their risk levels. • Create and maintain automation scripts and tools for security testing, monitoring, and deployment. • Develop and implement automated incident response procedures to swiftly manage security incidents. • Optimize security tools, including SIEM, CSPM, WAF, and IDS. • Identify, document, and communicate cloud platform vulnerabilities and mitigation strategies to stakeholders, balancing business agility with security risks. • Use automation to alert and enforce compliant configuration with AWS Config, AWS Lambda, and AWS SCPs. • Serve as a technical SME for security incident response. • Monitor Identity and Access Management (IAM) to ensure adherence to the principles of least privilege and role-based access control. • Participate in cloud environment audits by collaborating with external auditors and internal teams to meet expectations.

Requirements

• 3+ years of experience in DevSecOps and/or DevOps roles. • Experience in developing, improving, and operating the deployment and orchestration of complex distributed systems. • Proficiency in building, architecting, designing, and implementing cloud platforms and solutions. • Expertise in creating and deploying infrastructure-as-code using tools like Terraform, CloudFormation, or Ansible. • Experience administering AWS-specific services. • Knowledge or experience with zero-trust architecture systems and best practices. • Experience with vulnerability management. • Experience with monitoring and incident response. • Experience with security standards (HITRUST, GDPR, HIPAA, PCI DSS). • Experience in security audits and assessments. • Familiarity with cybersecurity with SIEM, IDS, and EDR. • Proficiency in scripting languages such as Python, Bash, or PowerShell. • Experience with CI/CD tools like Jenkins and/or Azure DevOps. • Familiarity with containerization and orchestration technologies such as Docker and Kubernetes. • Advanced English.

Benefits

• Great Place To Work certification. • Company with more than 15 years of experience. • Work with world-class clients and long-term projects. • English scholarships for external institute. • English classes with company teachers. • State-of-the-art tools and resources. • Certifications for your professional growth. • Recreation and leisure activities. • Compliance with the regulations and labor rights of your region.