Job Openings
DevSecOps Engineer
About the job DevSecOps Engineer
Minimum Requirements:
- Background & Experience: Originating from an open-source operating system background, candidates should possess a minimum of 5 years in IT, with 3 years focused on DevSecOps roles.
- Cloud Expertise: Demonstrated experience working in cloud environments, with a deep understanding of cloud architectures, services, and best practices.
- Penetration Testing & Security Analysis: Proficiency in conducting penetration tests and thorough security analyses to identify vulnerabilities and suggest remediation measures.
- Programming Skills: Strong coding capabilities, with experience in languages such as Python, Go, Java, JavaScript, and TypeScript, to develop and integrate security solutions.
- Certifications: Possessing industry-specific certifications, such as AWS DevOps or Security, will be considered an advantage.
- Leadership & Communication: Prior experience leading teams complemented by excellent communication and leadership abilities.
- Problem-Solving Abilities: Exceptional troubleshooting skills, with a knack for addressing complex technical issues.
- Incident Response: Demonstrated ability in IT Incident Response and handling security breaches.
- Networking: A foundational grasp of networking principles and experience with
rewalls from brands like Fortigate, Palo Alto, and Mikrotik. - Process & Documentation: Process-driven mindset with the ability to produce clear documentation supporting development and security activities.
Familiarity with the following technologies would be ideal:
- Container Orchestration: Docker and Kubernetes. Cloud Platforms: Speci cally AWS.
- Infrastructure As Code: Tools such as Terraform and Ansible. Kubernetes Package Manager: Experience with Helm Charts.
- CI/CD Tooling: Familiarity with Gitlab, Jenkins, CircleCI, among others.
- Penetration Testing Tools: Tools like Burp Suite, W3af, and Zed Attack Proxy.
- Vulnerability Assessment: Hands-on experience with tools like Nessus and Metasploit.
- System Monitoring: Tools including Datadog and New Relic.
- Cloud Security Posture Management: Knowledge of solutions such as Datadog, Prisma Cloud, and Aquasec.
- SIEM Tools: Familiarity with SIEM solutions like Datadog, Splunk, Log Analytics, Elastic, or Exabeam.