Job ref: QY7WRV79

People Profilers is hiring for a skilled Senior DevSecOps Engineer to work with the Security Partner in the client's Assurance Chapter to monitor and enhance their platform's security controls posture by offering a thorough technical understanding of security threats and potential vulnerabilities.

Responsibilities:

• Assisting teams in achieving operational success through evidence collection and alignment with controls.
• Helping Assurance teams and Security Partners find ways to automate the gathering of evidence.
• Giving teams technical guidance on how to properly integrate security setups, including IAM, network policies, API authentication, and other cloud components.
• Assisting the groups in creating safe CI and CD pipelines.
• Assisting the security Partners in analyzing vulnerabilities and Pen-test results that may impact parts of the solution that aren't application-code-specific.
• In assurance tooling, defining policies as code.
• Running proof of concepts for trying new security tools and implementations.
• Working with security engineers and penetration testers to help develop abuse cases and threat models.

Requirements:

• At least 3-5 years of experience as a DevSecOps Engineer or similar roles.
• Must-have solid experience in technical skills with Security + Platform/DevOps + Backend Development + Cloud.
• Experience with cloud engineering and an understanding of cloud security requirements.
• A thorough understanding of the software development process, CI/CD tools, and code reviews.
• Ability to express policies and automation as code.
• Contribute to Vulnerability Management findings, triage, and action suggestions.
• Use your research and analysis abilities to find new security automation opportunities.
• Be able to absorb and fully understand security requirements.
• Ability to successfully communicate with both security and non-security stakeholders to solve everyday difficulties.

Note:

- Technical (practical, demonstrated hands-on experience): Cloud Platform, Application of Security Frameworks and Standards, DevOps, Cloud runtimes, Software Development

- Technical (strategic - conceptual and domain knowledge): Vulnerability Management, Identify Automation Opportunities, Architecture and Design, Software Design patterns

Please send your updated CV to vy.le@peopleprofilers.com if the role is relevant to your experience.

Due to the volume of applications, we regret that only shortlisted candidates will be notified.