Job Details

Home

Senior DevSecOps Lead/Architect - No H1b - Need Local ( NJ, FL, GA, CT) - Hybrid Onsite 10+ Years at Remote, Remote, USA

Email: [email protected]

Senior DevSecOps Lead/Architect

Red Banks, NJ, Miami, FL, Atlanta, GA or Norwalk, CT

Hybrid Onsite

10+ years of Exp

No H1b

Job Description:

The
individual will work on a wide variety of interesting technical problems,
operate at scale in an environment with over an exabyte of data, have
opportunities to green field solutions, and operate with both autonomy and
empowerment from senior leadership.

WHAT
YOULL BRING:

Familiar with cloud platforms such as AWS, AzureDevOps,
OpenStack and GCP. Understand how to secure cloud resources and how to
integrate security into cloud-based applications.

Experience with provisioning and automation using tools
like Terraform, CloudFormation, Ansible, Puppet and OpenStack.

Familiar with Continuous Integration/Continuous
Deployment (CI/CD) Tools like AzureDevOps, Jenkins, CircleCI, GitLab, Travis
CI.

Experience with Security tools and concepts used in all
processes from SDLC to pipeline deployment. Technologies include SAST, DAST,
Linting, Secret Scanning, Pipeline job templating, repo management.

Familiar with Source Code Management (SCM) tools like
AzureDevOps, Bitbucket, GitHub, GitLab. Understand how to configure these tools
to automate the testing and deployment of code while integrating security
measures.

Familiar with containerization technologies including
Docker, PodMan, OpenShift and Kubernetes.

Experience with infrastructure vulnerability scanners
such as Nessus, Qualys, or OpenVAS. Understand how to use these tools to
identify and remediate vulnerabilities in applications and infrastructure.

Familiar with logging, SIEM and metrics tools such as
Splunk, ELK Stack, Prometheus, Grafana, Kubernetes Logging,etc.

Experience with programming languages such as Bash,
Python3, Ruby, Golang and PHP. They should be able to write code to automate
security processes and integrate security into the overall development process.

Familiar with encryption and key management tools: AWS
KMS, Azure Key Vault, Google Cloud KMS, Hashicorp Vault, Kubernetes Secret
Management

Experience Identity and Access Management (IAM): Okta,
AWS IAM, Azure Active Directory, SAML

Familiar with code analysis tools like Linters,
SonarQube, Snyk, Checkmarx, StackRox, etc.

Experience with web application firewall (WAF) tools on
prem and in cloud, and assisting in tuning them on a per application basis.

Experience with driving cross-organizational changes.

Default security-focused mindset.

Ability to work effectively under pressure in a
fast-paced environment.

Good troubleshooting instincts and the ability to quickly
triage / perform root-cause analysis.

The desire and capability to see a problem through to
completion.

Ability to quickly acquire new skills and thrive in a team-based
environment.

Agility in an environment that requires rapid iteration
and pivoting.

Professional, courteous, and positive attitude.

Great Project management skills with the capability to
manage concurrent initiatives.

Five plus years of experience with CI/CD platforms.

Three plus years of experience securing applications via
CI/CD pipelines leveraging static code analysis, unit and integration testing,
dependency analysis, etc.

Three plus years of experience performing threat and
security design reviews.

Three plus years of experience with containers.

Three plus years of experience as a Software Engineer
developing and maintaining an application.

Five plus years of experience with Linux administration
(full stack or DevOps experience counts).

Strong written and verbal communication skills, with a
passion for documentation.

Works effectively under pressure in a fast-paced, dynamic
environment.

Strong work ethic and an insatiable desire to learn.

It thrives in a team-based environment leaving ego at the
door.

Performs other related duties as assigned.

Off hours/on-call support required.

Continuously strive for the betterment of engineering.

Ensure that security concerns are accounted for in every
step of the build chain.

Work with engineers to identify workflow pain points and
develop their solutions.

Engineer continuous delivery pipelines that are secure,
stable, maintainable, and scalable.

Develop and enforce security standard methodologies,
processes, and tools.

Be the bridge between security, software and systems
engineering.

Identify trends in need of a larger solution, beyond the
scope of the immediate problem.

Design and champion best security practices within the
organization.

Solve complex and challenging problems with simple,
maintainable, and scalable solutions.

--

Keywords: continuous integration continuous deployment information technology Connecticut Florida Georgia New Jersey

[email protected]
View all

Thu Sep 28 23:23:00 UTC 2023

To remove this job post send "job_kill 694808" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

suhelwork1@gmail.com wrote:
Senior DevSecOps Lead/Architect

Red Banks, NJ, Miami, FL, Atlanta, GA or Norwalk, CT

Hybrid Onsite

10+ years of Exp

No H1b

Job Description:

The
individual will work on a wide variety of interesting technical problems,
operate at scale in an environment with over an exabyte of data, have
opportunities to green field solutions, and operate with both autonomy and
empowerment from senior leadership.

WHAT
YOULL BRING:

Familiar with cloud platforms such as AWS, AzureDevOps,
OpenStack and GCP. Understand how to secure cloud resources and how to
integrate security into cloud-based applications.

Experience with provisioning and automation using tools
like Terraform, CloudFormation, Ansible, Puppet and OpenStack.

Familiar with Continuous Integration/Continuous
Deployment (CI/CD) Tools like AzureDevOps, Jenkins, CircleCI, GitLab, Travis
CI.

Experience with Security tools and concepts used in all
processes from SDLC to pipeline deployment. Technologies include SAST, DAST,
Linting, Secret Scanning, Pipeline job templating, repo management.

Familiar with Source Code Management (SCM) tools like
AzureDevOps, Bitbucket, GitHub, GitLab. Understand how to configure these tools
to automate the testing and deployment of code while integrating security
measures.

Familiar with containerization technologies including
Docker, PodMan, OpenShift and Kubernetes.

Experience with infrastructure vulnerability scanners
such as Nessus, Qualys, or OpenVAS. Understand how to use these tools to
identify and remediate vulnerabilities in applications and infrastructure.

Familiar with logging, SIEM and metrics tools such as
Splunk, ELK Stack, Prometheus, Grafana, Kubernetes Logging,etc.

Experience with programming languages such as Bash,
Python3, Ruby, Golang and PHP. They should be able to write code to automate
security processes and integrate security into the overall development process.

Familiar with encryption and key management tools: AWS
KMS, Azure Key Vault, Google Cloud KMS, Hashicorp Vault, Kubernetes Secret
Management

Experience Identity and Access Management (IAM): Okta,
AWS IAM, Azure Active Directory, SAML

Familiar with code analysis tools like Linters,
SonarQube, Snyk, Checkmarx, StackRox, etc.

Experience with web application firewall (WAF) tools on
prem and in cloud, and assisting in tuning them on a per application basis.

Experience with driving cross-organizational changes.

Default security-focused mindset.

Ability to work effectively under pressure in a
fast-paced environment.

Good troubleshooting instincts and the ability to quickly
triage / perform root-cause analysis.

The desire and capability to see a problem through to
completion.

Ability to quickly acquire new skills and thrive in a team-based
environment.

Agility in an environment that requires rapid iteration
and pivoting.

Professional, courteous, and positive attitude.

Great Project management skills with the capability to
manage concurrent initiatives.

Five plus years of experience with CI/CD platforms.

Three plus years of experience securing applications via
CI/CD pipelines leveraging static code analysis, unit and integration testing,
dependency analysis, etc.

Three plus years of experience performing threat and
security design reviews.

Three plus years of experience with containers.

Three plus years of experience as a Software Engineer
developing and maintaining an application.

Five plus years of experience with Linux administration
(full stack or DevOps experience counts).

Strong written and verbal communication skills, with a
passion for documentation.

Works effectively under pressure in a fast-paced, dynamic
environment.

Strong work ethic and an insatiable desire to learn.

It thrives in a team-based environment leaving ego at the
door.

Performs other related duties as assigned.

Off hours/on-call support required.

Continuously strive for the betterment of engineering.

Ensure that security concerns are accounted for in every
step of the build chain.

Work with engineers to identify workflow pain points and
develop their solutions.

Engineer continuous delivery pipelines that are secure,
stable, maintainable, and scalable.

Develop and enforce security standard methodologies,
processes, and tools.

Be the bridge between security, software and systems
engineering.

Identify trends in need of a larger solution, beyond the
scope of the immediate problem.

Design and champion best security practices within the
organization.

Solve complex and challenging problems with simple,
maintainable, and scalable solutions.

Keywords: continuous integration continuous deployment information technology Connecticut Florida Georgia New Jersey

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 0

Location: ,