5-8 years track record of relevant work experience
Experience working with Developers, DevOps, and Engineering teams in a dynamic environment to promote/implement the DevSecOps program throughout the organization.
Demonstrated hands-on experience with DevOps techniques building continuous integration solutions using Jenkins, Docker, Git, Maven
Experience with Kubernetes and other container management solutions
Familiarity with API Security, Container Security, Cloud
Knowledge of Compliance Standards and Policies and the associated certification and audit processes
Experience with security automation and infrastructure as a code
Experience coordinating and performing vulnerability assessments through the use of automated and manual tools (Tenable, NMAP, etc)
Ability to review and analyze vulnerability data to identify security risks to the organization s network, infrastructure, and application s and determine any reported vulnerabilities that are false positives.
Familiarity with Information Security frameworks/standards (i.e. CIS, NIST, RFC2196, etc)
Comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc
Experience configuring, implementing and leveraging computer security and networking diagnostic/monitoring tools.
Knowledge of Windows and Linux patch management and related information security functions (authentication, encryption, iptables, SSL, Ciphers, etc)
Ability to work with APIs and Plugins to integrate security tools into established CI/CD pipelines.
Hands on experience in at least one of the programming languages such as Scala, Python, Golang and Java etc
Experience with monitoring and log aggregating frameworks such as Kafka, Logstash, Splunk, ElastiSearch, and Kibana.
Must be proficient in one or more scripting languages: Unix Shell, Perl, Python
Knowledge and experience with Linux OS
Experience working in Agile environments
Ability to handle multiple competing priorities in a fast-paced environment
Strong Automation and Problem solving skills and ability to follow through to completion
Experience coaching junior members in the team
Job Description
Implement and support Continuous Integration and Deployment Pipelines.
Schedule, implement, and automate security compliance patching and updates on Dev/QA/Staging servers.
Ensure continuous availability of various tools supporting SCM & Release Management including Source Control, Continuous Integration, & Change Management.
Engage with cross-functional co-located teams in design, development and implementation of enterprise scalable features related to enabling higher developer productivity, environment monitoring and self-healing, and facilitate autonomous delivery teams.
Integrating Code Quality tools and Code Analysis tools
Implementing Automation to improve coding efficiency
CI/CD Onboarding
Work collaboratively across team boundaries to share common capabilities
