DevSecOps Engineer

DevSecOps Engineer

02 Sep 2021
Massachusetts, Boston, 02117 Boston USA

DevSecOps Engineer



Job Number: 235841

DevSecOps Engineer

100% ONSITE

Job Description:

Our client is searching for a Senior Security Engineer - DevSecOps who will serve as the expert in matters pertaining to application security and cloud security. This individual will collaborate with application development and infrastructure teams to protect against threats to web applications and cloud infrastructure. This role will help ensure secure design, development and deployment of technologies according to leading practices and compliance requirements. This individual will analyze business impact and exposure, based on emerging security threats, vulnerabilities and risks.

Responsibilities:


  • Contributes to the development and maintenance of the information security strategy

  • Provides guidance and sets standards for secure application development and cloud configurations

  • Collaborates with application development and infrastructure teams to protect web applications and our cloud environment (Via WAF management, and secure cloud configurations (AWS, Azure)

  • Work with engineers to overhaul and develop a security framework for all development and AWS cloud operations

  • Researches, designs and advocates new technologies, architectures and security products

  • Monitors, communicates and troubleshoots security risks/problems

  • Perform other job-related duties as assigned


Qualifications:


  • Security focus with Dev/Ops pipeline (Terraform, Cloud formation, Jenkins, Ansible)

  • Cloud and build compliance (veracode, nexus, git, lacework, CloudGuard, CIS, NIST)

  • Experience with Public Cloud Platforms - Architecture and Deployment (AWS, Azure) configuration and administration of security features & services.

  • Experience with implementing WAFs, Botnet protection and OWASP top 10 best practices

  • Familiarity with microservice architectures and cloud-native technologies

  • Ability to meaningfully participate in code reviews and provide security guidance to software development teams.

  • Familiarity with Continuous Integration and Continuous Delivery pipelines (CI/CD)

  • Knowledge of application development, cloud and network security methodologies

  • Strong experience in Application Development, DevOps, Agile Methodology

  • Familiarity with product lines such as Veracode, Jenkins, Chef, Puppet

  • Excellent written and verbal skills with public speaking ability

  • Solid report writing skills using Microsoft Word, PowerPoint and Excel

  • Must be willing to work nights or weekends, if necessary

  • Bachelor's degree or equivalent work experience

  • A minimum of 5-7 years of experience in a corporate environment



THIRD PARTY AGENCIES, SUBCONTRACTORS, AND RECRUITERS NEED NOT APPLY. Applicants received from firms will not be considered. Subcontracting is not available for this position.

Related jobs

Job Details

Jocancy Online Job Portal by jobSearchi.