DevSecOps Engineer
23 hours ago
Description
• Design, implement, and manage CI/CD pipelines with a focus on security at every stage • Automate security testing and integrate security tools into the development workflow • Monitor, detect, and respond to security threats and vulnerabilities in a timely manner • Collaborate with development, QA, and IT teams to ensure security best practices are embedded throughout the software lifecycle • Develop and maintain security policies, procedures, and documentation • Conduct regular security audits, assessments, and code reviews • Provide training and guidance to team members on secure coding practices and DevSecOps methodologies • Implement and manage infrastructure as code (IaC) using tools such as Pulumi, Terraform or CloudFormation • Ensure compliance with industry standards and regulations (e.g., GDPR, HIPAA) • Stay current with the latest security trends, vulnerabilities, and technologies to proactively address potential threats
Requirements
• Bachelor’s degree in computer science, software engineering or related field • 4+ years of experience in DevSecOps, Cloud Engineering, or DevOps with a security focus • Strong knowledge of AWS, ideally certified to the associate level (AWS Solutions Architect Associate or AWS SysOps Associate) • Proficiency in scripting languages such as Python, Bash, or PowerShell • Experience with CI/CD tools (e.g., AWS CodePipeline, Jenkins, GitLab CI, CircleCI) • Familiarity with security tools and practices (e.g., OWASP, SAST, DAST) • Understanding of network security, firewalls, VPNs, IDS/IPS, and endpoint security • Proficiency in Identity and Access Management (IAM) roles and policies and S3 bucket policies • Strong analytical and problem-solving skills, with ability to propose innovative solutions and troubleshoot issues • Ability to work independently and as part of a collaborative team in a fast-paced environment • Effective written and oral communications skills – C1/C2 (advanced/proficient) level English is required
Apply Now