Job Details

Home

DevSecOps Engineer at Alpharetta, Georgia, USA

Email: [email protected]

From:

karthik,

RITWIK Infotech INC

[email protected]

Reply to:   [email protected]

Hi,

Hope you are doing good,

Please find below job description,

Position : DevSecOps Engineer

Location : Alpharetta, GA (Remote)

Duration: Long Term

Job Duties:

The Corporate Information Security (CIS) organization securely enables the business by protecting assets and information across Verizon networks, infrastructure and applications. CIS integrates cybersecurity governance, policies, technologies and operations across Verizon, and works to incorporate security into the design of technology systems and services.

The Platform Security team within Verizons Corporate Information Security (CIS) organization works to embed security seamlessly into the development and operations lifecycle of technology systems and services.

We are looking for an experienced DevSecOps Automation Engineer to work collaboratively and creatively in the Software Security Center of Excellence Automation team to help integrate security into Agile/DevOps strategy and practices by using DevSecOps principles, processes and tools.

You will also build automation/ infrastructure as code to enforce cloud infrastructure security.

You will automate security processes into CI/CD pipeline.

You will automate integrating security scan reports into dashboards.

You will be responsible for the following primary activities:

Build and maintain DevSecOps pipelines to adopt shift-left paradigm for security testing (SAST, DAST, SCA, Container Scanning, API Security and IAC Linting etc.).

Develop and promote best practices for DevSecOps and secure CI/CD.

Enable inner source model for secure pipeline scripts.

Develop automation solutions for scans reporting and dashboard integrations.

Stay up-to-date on new security tools & techniques, and act as driver of innovation and process maturity.

Conduct research and evaluate new DevSecOps platforms, components, tools, and processes for new projects and ongoing initiatives. Collect security-related metrics and increase security visibility across the organization.

Deploy and manage security tools to cloud infrastructure platforms such as Google Cloud or AWS, through automation using infrastructure-as-code principles. Work with teams to bring continuous improvement to DevSecOps processes and tools. Youll need to have: Bachelors degree    Five or more years of work experience. 3+ years of SRE and/or DevOps engineer experience.

Experience as a full stack developer, with hands-on experience in DevSecOps practices.

Experience with CI/CD tools such as GitLab, Jenkins, Nexus, Artifactory.

Experience with hands-on software development or scripting with at least one of these programming languages - Java, Node JS, Python, bash, PowerShell.

Hands-on experience with AWS services like EC2, EKS, S3, Fargate and experience spinning up AWS services using CloudFormation templates and Ansible scripts. Demonstrated skill with at least one or more configuration management/scripting technologies such as Ansible, Groovy, Terraform or Cloud Formation.

Experience with API and platform integration.

Experience with software security, secure coding, or software assurance tools and techniques. Knowledge of Agile & DevOps methodologies.

Even better if you have:

A degree in Computer Science, Computer Engineering or a related field.

Certifications: One or more of the following CISSP, CISM, CRISC, GSEC etc.

Experience with tools and technologies used throughout secure SDLC (e.g. Blackduck, Fortify, Checkmarx, Veracode, WhiteSource, Snyk etc.).

Proven track record of securely architecting and owning cloud platforms such as (AWS, GCE, Azure) using Infrastructure as code techniques.

Experience with Linux Containers (Docker), Kubernetes, and deployment of containerized applications/microservices architectures.

Experience in software development. Experience in Information Security, Networking or Security Risk Management.

Experience with Cloud Security (AWS, GCS, Azure).

Experience with ISO 27001-2, NIST 800-53, or other controls standards.

Excellent documentation and organization skills. Ability to multitask, take direction, prioritize, and manage multiple activities / tasks to achieve objectives.

Excellent oral, written, and interpersonal skills.

Ability to present and communicate to both superiors and peers.

Please share updated resume and contact details at [email protected] or call me at +1 248-232-0011 Ext : 106

Thanks and Regards

Karthik

RITWIK Infotech,Inc

Keywords: continuous integration continuous deployment javascript sthree Georgia

[email protected]
View all

Wed Jan 25 17:14:00 UTC 2023

To remove this job post send "job_kill 304163" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

karthik@ritwikinfotech.com wrote:
From:

karthik,

RITWIK Infotech INC

karthik@ritwikinfotech.com

Reply to:   karthik@ritwikinfotech.com

Hi,

Hope you are doing good,

Please find below job description,

Position : DevSecOps Engineer

Location : Alpharetta, GA (Remote)

Duration: Long Term

Job Duties:

The Corporate Information Security (CIS) organization securely enables the business by protecting assets and information across Verizon networks, infrastructure and applications. CIS integrates cybersecurity governance, policies, technologies and operations across Verizon, and works to incorporate security into the design of technology systems and services.

The Platform Security team within Verizons Corporate Information Security (CIS) organization works to embed security seamlessly into the development and operations lifecycle of technology systems and services.

We are looking for an experienced DevSecOps Automation Engineer to work collaboratively and creatively in the Software Security Center of Excellence Automation team to help integrate security into Agile/DevOps strategy and practices by using DevSecOps principles, processes and tools.

You will also build automation/ infrastructure as code to enforce cloud infrastructure security.

You will automate security processes into CI/CD pipeline.

You will automate integrating security scan reports into dashboards.

You will be responsible for the following primary activities:

Build and maintain DevSecOps pipelines to adopt shift-left paradigm for security testing (SAST, DAST, SCA, Container Scanning, API Security and IAC Linting etc.).

Develop and promote best practices for DevSecOps and secure CI/CD.

Enable inner source model for secure pipeline scripts.

Develop automation solutions for scans reporting and dashboard integrations.

Stay up-to-date on new security tools & techniques, and act as driver of innovation and process maturity.

Conduct research and evaluate new DevSecOps platforms, components, tools, and processes for new projects and ongoing initiatives.  Collect security-related metrics and increase security visibility across the organization.

Deploy and manage security tools to cloud infrastructure platforms such as Google Cloud or AWS, through automation using infrastructure-as-code principles.  Work with teams to bring continuous improvement to DevSecOps processes and tools.  Youll need to have:  Bachelors degree    Five or more years of work experience.  3+ years of SRE and/or DevOps engineer experience.

Experience as a full stack developer, with hands-on experience in DevSecOps practices.

Experience with CI/CD tools such as GitLab, Jenkins, Nexus, Artifactory.

Experience with hands-on software development or scripting with at least one of these programming languages - Java, Node JS, Python, bash, PowerShell.

Hands-on experience with AWS services like EC2, EKS, S3, Fargate and experience spinning up AWS services using CloudFormation templates and Ansible scripts.  Demonstrated skill with at least one or more configuration management/scripting technologies such as Ansible, Groovy, Terraform or Cloud Formation.

Experience with API and platform integration.

Experience with software security, secure coding, or software assurance tools and techniques.  Knowledge of Agile & DevOps methodologies.

Even better if you have:

A degree in Computer Science, Computer Engineering or a related field.

Certifications: One or more of the following CISSP, CISM, CRISC, GSEC etc.

Experience with tools and technologies used throughout secure SDLC (e.g. Blackduck, Fortify, Checkmarx, Veracode, WhiteSource, Snyk etc.).

Proven track record of securely architecting and owning cloud platforms such as (AWS, GCE, Azure) using Infrastructure as code techniques.

Experience with Linux Containers (Docker), Kubernetes, and deployment of containerized applications/microservices architectures.

Experience in software development.  Experience in Information Security, Networking or Security Risk Management.

Experience with Cloud Security (AWS, GCS, Azure).

Experience with ISO 27001-2, NIST 800-53, or other controls standards.

Excellent documentation and organization skills.  Ability to multitask, take direction, prioritize, and manage multiple activities / tasks to achieve objectives.

Excellent oral, written, and interpersonal skills.

Ability to present and communicate to both superiors and peers.

Please share updated resume and contact details at karthik@ritwikinfotech.com or call me at +1 248-232-0011 Ext : 106

Thanks and Regards

Karthik

RITWIK Infotech,Inc

Keywords: continuous integration continuous deployment javascript sthree Georgia

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 12

Location: Alpharetta, Georgia