We are seeking passionate DevSecOps Engineer to join our team that strategizes and delivers secured infrastructure and services. Together with the team, you will be involved in development and security, with a focus on automating security processes and implementing best practices throughout the software development lifecycle.
Job Descriptions:
· Working closely with Product Teams to implement various automation to streamline developer workflows from application development to deployment and embed security practices into the DevOps workflow
· Developing and operating the application release management workflows, by building custom integrations and tooling with existing CI/CD products.
· Design, implement, and maintain automated security processes and tools to streamline security testing, code scanning, and vulnerability assessments.
· Advocating modern software engineering practices, such as code review and security compliance checks.
· Deploy and manage monitoring tools of infrastructure performance, utilization and health monitoring of applications in data centers.
· System troubleshooting and problem solving across platform and application domains
· Ensure that systems and applications adhere to industry-specific security standards and compliance requirements.
· Provision virtual machines, databases, application containers and licenses for development team.
· Work closely with cross-functional teams to identify and address security concerns at every stage of the development process.
Job Requirements:
· Proven experience in a DevSecOps or similar role.
· In-depth knowledge of software quality assurance methodologies, security best practices, standards, and frameworks.
· Passion for automation, standardization and best practices in software development and testing
· Excellent understanding of Software Development Life Cycle, Test Driven Development, Continuous Integration and Continuous Delivery.
· Experience working with high availability, high performance, high security, multi-data center systems.
· Demonstrable skills in three or more programing/scripting languages
· Ability to troubleshoot complex issues ranging from system resource to application stack traces
· Strong on collaboration and communication including documentation
· Familiar with tools such as Jira, Bamboo, Nexus Repo, Bit Bucket, Confluence, Chef Automate, TestComplete, Selenium etc.
· Knowledge of RPM file deployment, management and design
· Experience with infrastructure security Linux and Windows server hardening
· Experience with security testing and secure coding
· Security knowledge of Linux, Apache, Nginx, Java, IIS and Windows
· Knowledge of disaster recovery, system backup and restore
· Experience in one or more virtualization technologies (KVM, Xen, VMware, Hyper-V)
· Knowledge of container technologies such as Kubernetes, LXC