| Sr. DevSecOps || Hybrid || ------(No H1B)---------- || JD at Remote, Remote, USA |
| Email: [email protected] |
| Title: Security Engineer/CaaS/Sac/DevSecOps Location: Hybrid/Deerfield Beach/Ft. Lauderdale -1 year+ - Job Description: Please send candidates who meet or exceed the Below experience: We are seeking a highly skilled Security Engineer with a strong focus on automation and expertise in implementing security measures through Configuration as Code (CaaS) or Security as Code (SaC) methodologies. The ideal candidate will be responsible for designing, implementing, and maintaining automated security solutions while leveraging code-centric approaches to ensure robust protection of our systems and data. Responsibilities: Design, develop, and implement automated security solutions using Configuration as Code (CaaS) or Security as Code (SaC) principles to safeguard our infrastructure and applications. Collaborate with cross-functional teams to integrate security controls into the development, deployment, and operations pipelines, ensuring security measures are implemented throughout the SDLC. Implement and maintain automated security processes for infrastructure provisioning, configuration management, and vulnerability assessments. Conduct security assessments, code reviews, and penetration testing using automated tools and scripts to identify vulnerabilities and weaknesses in systems and applications. Develop and maintain security-related scripts, templates, and playbooks for automation tools such as Ansible, Terraform, or similar platforms. Monitor and analyze security events and incidents using automated monitoring and logging solutions, responding to security threats and incidents in a timely manner. Drive continuous improvement by researching, evaluating, and recommending new security technologies, tools, and best practices focused on automation and code-centric security approaches. Collaborate with DevOps teams to ensure that security practices are integrated seamlessly into CI/CD pipelines and cloud-native architectures. Requirements: Bachelor's degree in Computer Science, Information Security, or related field (or equivalent work experience). 10+ years of experience in a Security Engineer or similar role with a strong emphasis on automation, scripting, and code-centric security practices. Proficiency in scripting languages such as Python, PowerShell, or Bash for automating security tasks and processes. Experience with Configuration as Code (CaaS) or Security as Code (SaC) methodologies and tools like Ansible, Terraform, Chef, Puppet, or similar technologies. Strong understanding of security principles, threat modeling, vulnerability management, and risk assessment methodologies. Hands-on experience with security tools such as vulnerability scanners, SIEM, IDS/IPS, and other security-related software. Familiarity with cloud security concepts and practices (AWS, Azure, GCP) and securing containerized environments is a plus. Relevant certifications such as CISSP, CEH, or AWS/GCP/Azure security certifications are advantageous. Preferred Skills: Knowledge of DevSecOps practices and integrating security into DevOps processes. Experience with continuous security monitoring, log analysis, and incident response automation. Strong analytical and problem-solving skills, with the ability to prioritize and multitask effectively. Location: [Specify location if applicable] Benefits: [Include information about benefits, if provided] Join our team and contribute to the implementation of cutting-edge automated security solutions, ensuring the protection of our systems and data through innovative code-centric approaches. Keywords: continuous integration continuous deployment golang |
| [email protected] View all |
| Wed Nov 22 01:53:00 UTC 2023 |