Senior DevSecOps Engineer
Job Description:
Job ref: QY7WRV79
People Profilers is hiring for a skilled Senior DevSecOps Engineer to work with the Security Partner in the client's Assurance Chapter to monitor and enhance their platform's security controls posture by offering a thorough technical understanding of security threats and potential vulnerabilities.
Responsibilities:
- Assisting teams in achieving operational success through evidence collection and alignment with controls.
- Helping Assurance teams and Security Partners find ways to automate the gathering of evidence.
- Giving teams technical guidance on how to properly integrate security setups, including IAM, network policies, API authentication, and other cloud components.
- Assisting the groups in creating safe CI and CD pipelines.
- Assisting the security Partners in analyzing vulnerabilities and Pen-test results that may impact parts of the solution that aren't application-code-specific.
- In assurance tooling, defining policies as code.
- Running proof of concepts for trying new security tools and implementations.
- Working with security engineers and penetration testers to help develop abuse cases and threat models.
Requirements:
- At least 3-5 years of experience as a DevSecOps Engineer or similar roles.
- Must-have solid experience in technical skills with Security + Platform/DevOps + Backend Development + Cloud.
- Experience with cloud engineering and an understanding of cloud security requirements.
- A thorough understanding of the software development process, CI/CD tools, and code reviews.
- Ability to express policies and automation as code.
- Contribute to Vulnerability Management findings, triage, and action suggestions.
- Use your research and analysis abilities to find new security automation opportunities.
- Be able to absorb and fully understand security requirements.
- Ability to successfully communicate with both security and non-security stakeholders to solve everyday difficulties.
Note:
- Technical (practical, demonstrated hands-on experience): Cloud Platform, Application of Security Frameworks and Standards, DevOps, Cloud runtimes, Software Development
- Technical (strategic - conceptual and domain knowledge): Vulnerability Management, Identify Automation Opportunities, Architecture and Design, Software Design patterns
Please send your updated CV to vy.le@peopleprofilers.com if the role is relevant to your experience.
Due to the volume of applications, we regret that only shortlisted candidates will be notified.