Description As a Senior DevSecOps Engineer, you will lead the integration of security practices into our DevOps processes, ensuring the highest level of security across the software development lifecycle. This role is suited for a seasoned professional with deep expertise in DevOps, security, and automation. You will provide strategic direction, mentorship to team members, and collaborate with various stakeholders to enhance the organization's security posture.Key Responsibilities:Security Automation Leadership: Lead the development and optimization of security automation scripts and tools within CI/CD pipelines. Champion the implementation of advanced automated security testing processes.Vulnerability Management and Remediation: Oversee and manage vulnerability scanning and assessment processes, ensuring swift identification and remediation of security vulnerabilities.Collaborate with development and operations teams to implement effective remediation strategies.Security Monitoring: Lead the design, implementation, and maintenance of comprehensive security monitoring solutions.Incident Response: Drive incident response efforts, analyze security events, and contribute to continuous improvement of response capabilities.Infrastructure as Code (IaC) Excellence: Establish and enforce security best practices in Infrastructure as Code (IaC) scripts. Collaborate with DevOps teams to integrate advanced security measures into infrastructure provisioning.Secure Configuration Management: Implement and enforce advanced secure configuration management practices for infrastructure components. Set and monitor secure configuration baselines in collaboration with operations teams.Security Governance and Compliance: Lead the establishment and enforcement of security governance policies and compliance standards. Collaborate with internal and external auditors to ensure regulatory compliance.Collaboration and Mentorship: Collaborate with cross-functional teams, providing expert guidance on security practices in DevOps processes. Mentor and coach junior and intermediate DevSecOps engineers.Qualifications:Bachelor's or Master's degree in Computer Science, Information Security, or a related field.8+ years of experience in DevOps, security, or a related role.Proven track record of leading DevSecOps initiatives and implementing security in complex environments.Expert proficiency in scripting languages (e.g., Python, Bash) and advanced security automation tools.In-depth knowledge of containerization and orchestration (e.g., Docker, Kubernetes).Extensive experience with cloud platforms (e.g., AWS, Azure, Google Cloud).Strong understanding of cybersecurity principles and practices.Preferred Skills:Certification in DevSecOps or relevant advanced security certifications.Experience with advanced CI/CD pipelines, infrastructure as code, and version control systems (e.g., Git).Deep expertise in container security best practices.Familiarity with security scanning tools and vulnerability management platforms.Advanced skills in incident response and security incident analysis.SkillsEducationBachelors Degree (B) (Required)Closing Date05 April 2024
