Job Description :
Hi
Position: Senior Devsecops Engineer
Location: Warren, NJ
Interview process: Phone & face to face OR Skype
Contract: 6 months to 30 months
Interview Process: they will have to do a work assignment, then video chat, then if not local, video chat interview, for local candidates it’s in person.
Main Responsibilities
Build and maintain an AWS cloud infrastructure architecture aligning security, compliance, performance and resilience with cost
Provide expertise and best practices for implementing cloud security (internal) and product security (external)
Assess architectures and designs for security vulnerabilities and suggest and implement proper alternatives
Actively contribute to the continuous improvement of our governance platform and tooling, by providing input into the direction of roadmap and contributing to the development of our tooling
Build and maintain monitoring, auditing, and reporting frameworks that produces artifacts that support security and compliance needs
Build and maintain a set of tools that enable developers to self-serve for most operational tasks
Develop processes that produce artifacts that support security and compliance requirements
Required Skills
Have significant knowledge of security practices for client-server product architectures, focusing predominantly on cloud-based server development
Have significant knowledge of AWS systems, including EC2, S3, IAM roles, CloudWatch, CloudTrail, Config, Lambda, Security Groups, VPCs, WAF, etc…
Experience in performing security vulnerability assessments, good familiarity with regulations like PCI and SOX
Numerous years of programming or scripting experience with a popular modern language utilized by above tools (Java, Python, Ruby, etc)
Experience extracting pertinent security data from SIEM solutions and AWS audit, logs, and reports
Life-long learner – always looking to stay up to date with latest attack vectors, vulnerabilities, remediation and protection paradigms, etc…
Self-motivated, proactive, driven individual
Other Desired Skills
Experience with cloud-based security management/IDS/IPS/SIEM tools, such as Dome9, AlienVault, AlertLogic, Threat Stack, etc…
Experience using DRM frameworks for protecting video and streaming content
Strong interpersonal, oral, and written communication skills
Ability to work in a fast-paced, rapidly changing, Agile, competitive environment
Ability to work independently and in group environments
Experience
Bachelor’s Degree or higher in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience
6+ years experience with Security Best Practices, implementing enterprise-grade security solutions
4+ years experience with AWS development and management
2+ years experience writing code or scripts in a modern programming or scripting language (Java, Python, Ruby, etc)
One or more recognized security and cloud specific certifications, e.g., CCSP, SSCP, CISSP, CCS?
Suresh
Osair Technologies
.