Azure DevSecOps Engineer | Open Roles: 2

About the Role:

As a DevSecOps Engineer, you will play a pivotal role in ensuring the security of our software development lifecycle (SDLC). You’ll collaborate closely with development, operations, and security teams to integrate security practices into our CI/CD pipelines, fostering a culture of security awareness and responsibility.

Responsibilities:

  • Security Integration:
    • Work collaboratively with development teams to embed security practices into the SDLC.
    • Implement security controls and best practices throughout the development process.
    • Review code for security vulnerabilities and provide recommendations for remediation.
  • CI/CD Pipeline Security:
    • Integrate security tools and processes into our CI/CD pipelines.
    • Automate security testing and vulnerability scanning.
    • Ensure that security checks are performed at various stages of the development process.
  • Threat Modeling:
    • Conduct threat modeling exercises to identify potential vulnerabilities and risks.
    • Develop mitigation strategies to address identified threats.
  • Security Awareness:
    • Promote a security-conscious culture within the organization.
    • Educate development teams on security best practices and emerging threats.
  • Security Tooling:
    • Evaluate, select, and implement security tools and technologies.
    • Maintain and update security tools to ensure they are up-to-date and effective.
  • Incident Response:
    • Assist in incident response efforts when security breaches occur.
    • Contribute to post-incident analysis and remediation activities.

Qualifications:

  • Strong understanding of software development methodologies and best practices.
  • Experience with CI/CD pipelines and automation tools (e.g., Jenkins, GitLab CI/CD, CircleCI).
  • Knowledge of security concepts, threats, and vulnerabilities.
  • Familiarity with security tools and frameworks (e.g., OWASP ZAP, Nessus, Burp Suite).
  • Experience with scripting languages (e.g., Python, Bash).
  • Ability to work collaboratively in a cross-functional team environment.
  • Strong problem-solving and analytical skills.

Preferred Qualifications:

  • Experience with cloud platforms (e.g., AWS, Azure, GCP).
  • Certifications in cybersecurity (e.g., CISSP, CISM, CEH).

About Us:

Job Category: DevOps
Job Type: Full Time
Job Location: Remote

Apply for this position

Allowed Type(s): .pdf, .doc, .docx