Job Description :
Job Description
As the DevSecOps Engineer, you will help build amazing features for development teams. Your mission will be to work alongside the Engineering, Product, and Operations teams in an Agile environment to update our CI pipelines with security best practices as well as enabling build\provision\deploy activities in our next generation hosting platforms.
Day-to-Day Responsibilities:
Work closely with Operations and Product Teams to design and build leading edge features, provide maximum uptime and security, and support our Agile transformation.
Provide knowledgeable, confident high-level support within the organization to resolve internal and external customer issues, mentor junior staff members, and drive our product growth.
Assist in developing, implementing and enforcing policies to enhance CI\CD pipelines with specific emphasis on enabling cloud native and containerized application models.
Commitment to continuous learning and improvement of development and quality strategies
Recommend technical solutions and consult with development teams to drive efficiencies and adoption
Liaise with engineering organization to ensure full support of product roadmap
Foster and evangelize DevOps culture and product ownership amongst engineering teams
Job Qualifications:
Experience with Kubernetes, with specific emphasis on Pivotal Cloud Foundry PKS services.
In-depth hands-on experience with Amazon Web Services (or Azure/GCP equivalents), including EC2, Lambda, KMS, and API Gateway
Experience with the following:
Implement new security tools and systems based on InfoSec policies
Support and maintenance of large commercial off-the-shelf software installations
Working in a fast-paced, enterprise level function- responding to and identifying potential and active issues and determining a course of action
Designing, implementing, and supporting service provider (xSP, SaaS, IaaS, PaaS, MBaaS, etc environments
Continuous Integration and Continuous Delivery using Jenkins or similar CI tooling
Configuration management software (Ansible Tower or Puppet)
Scripting in Python, Bash or similar
Cisco ASA and virtual appliance experience a plus
Evaluate security tooling implementation; recommend and deploy enhancements
Strong understanding of security solutions or activities such as:
Public Facing application hardening
API Gateways, specifically including authentication and encryption.
Static, Dynamic and Interactive security assessment solutions
Implement safeguards for network security including perimeter and lateral movement
Application and Dependency scanning, vulnerability analysis, and remediation.
Experience with the fundamentals of the following/similar:
OWASP and other security standards
Pivotal PKS Services
Java Development
Python and Bash Scripting
Unit and Functional\Regression testing activities