Job Description :
Hi,

Hope you’re doing great.

This is Shivangi with KPG99 Inc. . I have the following job opportunity of Senior DevSecOps Engineer in Warren NJ. Please see the job description below and let me know if you would be interested in it. You can either reply to this mail or call me at

Senior DevSecOps Engineer

Warren NJ

6+ Months

Ps and f2f / Skype for Ideal candidates

Can work remote 2x a week, but need to be in office 3 x a week

Must be USC or GC

Job Description:

This position is for leading the security strategy for our AR/VR team in terms of AWS cloud infrastructure and coding and data best practices. Person is expected to be hands-on with scripting for cloud environments, as well as knowledgeable for processes and best practices for keeping data, communications, and network interfaces secured per today’s standards. Here are some additional details:


Build and maintain an AWS cloud infrastructure architecture aligning security, compliance, performance and resilience with cost
Provide expertise and best practices for implementing cloud security (internal) and product security (external)
Assess architectures and designs for security vulnerabilities and suggest and implement proper alternatives
Actively contribute to the continuous improvement of our governance platform and tooling, by providing input into the direction of roadmap and contributing to the development of our tooling
Build and maintain monitoring, auditing, and reporting frameworks that produces artifacts that support security and compliance needs
Build and maintain a set of tools that enable developers to self-serve for most operational tasks
Develop processes that produce artifacts that support security and compliance requirements


Main Responsibilities


Build and maintain an AWS cloud infrastructure architecture aligning security, compliance, performance and resilience with cost
Provide expertise and best practices for implementing cloud security (internal) and product security (external)
Assess architectures and designs for security vulnerabilities and suggest and implement proper alternatives
Actively contribute to the continuous improvement of our governance platform and tooling, by providing input into the direction of roadmap and contributing to the development of our tooling
Build and maintain monitoring, auditing, and reporting frameworks that produces artifacts that support security and compliance needs
Build and maintain a set of tools that enable developers to self-serve for most operational tasks
Develop processes that produce artifacts that support security and compliance requirements 


Required Skills


Have significant knowledge of security practices for client-server product architectures, focusing predominantly on cloud-based server development
Have significant knowledge of AWS systems, including EC2, S3, IAM roles, CloudWatch, CloudTrail, Config, Lambda, Security Groups, VPCs, WAF, etc…
Experience in performing security vulnerability assessments, good familiarity with regulations like PCI and SOX
Numerous years of programming or scripting experience with a popular modern language utilized by above tools (Java, Python, Ruby, etc)
Experience extracting pertinent security data from SIEM solutions and AWS audit, logs, and reports
Life-long learner – always looking to stay up to date with latest attack vectors, vulnerabilities, remediation and protection paradigms, etc…Self-motivated, proactive, driven individual 


Other Desired Skills


Experience with cloud-based security management/IDS/IPS/SIEM tools, such as Dome9, AlienVault, AlertLogic, Threat Stack, etc…
Experience using DRM frameworks for protecting video and streaming content
Strong interpersonal, oral, and written communication skills
Ability to work in a fast-paced, rapidly changing, Agile, competitive environment
Ability to work independently and in group environments 


Experience


Bachelor’s Degree or higher in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience
6+ years’ experience with Security Best Practices, implementing enterprise-grade security solutions
4+ years’ experience with AWS development and management
2+ years’ experience writing code or scripts in a modern programming or scripting language (Java, Python, Ruby, etc)One or more recognized security and cloud specific certifications, e.g., CCSP, SSCP, CISSP, CCSK




Thanks and Regards,

Shivangi Singh | Team Lead | KPG99, INC
Direct|  |