Job Description
Step into a Lead DevSecOps Engineer Role with a Global Financial Leader
Are you a DevSecOps pro, passionate about security, and ready to drive innovative solutions in a fast-paced environment? Join a premier global financial services firm known for its robust presence in commodities, energy, and financial markets. This is your chance to lead the security transformation of CI/CD pipelines in a dynamic, high-impact role.
Why You Should Apply
You’ll work with a top-tier firm that values security as a core function of its CI/CD practices and cloud infrastructure. With a focus on secure DevSecOps processes, you'll help protect critical systems across AWS and Azure environments, developing resilient, best-in-class security solutions.
Key Responsibilities
1. CI/CD Security Leadership: Design and secure the CI/CD platform, implementing strict access controls, encrypted secrets, and secure agents.
2. Pipeline Policy Enforcement: Integrate and monitor SAST and DAST processes, removing unencrypted secrets from version control and ensuring compliance across deployments.
3. Cloud Security Oversight: Monitor and address AWS and Azure security through IaC, enhancing access controls and enforcing least privilege models for cloud resources.
4. Automated Security Testing: Develop and maintain security tests for applications and platforms, embedding security awareness among developers.
5. Advanced Penetration Testing: Automate penetration testing workflows, ensuring effective security controls and rapid issue resolution.
6. Data Protection and Resilience: Review data storage and backup protocols to protect against ransomware and ensure secure data transmission.
7. Policy and Standards Development: Lead in crafting security policies, standards, and architecture guidelines that reinforce DevSecOps excellence.
8. Security Advocacy: Drive security best practices across development and operations, keeping teams updated on industry threats and standards.
Skills & Experience
1. Coding Proficiency: Skilled in Python or PowerShell.
2. Deep DevSecOps Knowledge: Extensive experience in InfoSec or DevSecOps, with a strong security mindset and cloud-first approach.
3. Cloud & IaC Expertise: Skilled in AWS/Azure security practices, securing pipelines, and applying IaC principles.
4. Container & Vulnerability Management: Expertise in securing containerized applications and runtimes.
5. Data Security: Strong grasp of securing data at rest and in transit.
6. Networking Fundamentals: Foundational networking knowledge to support infrastructure and security practices.
Ready to Advance Your DevSecOps Career?
Take on a lead role in a dynamic, innovative environment that champions security. Join us to secure the future of this global powerhouse!
Apply now to make a lasting impact in DevSecOps or contact us directly. This firm is committed to creating a diverse and welcoming workplace.
#J-18808-Ljbffr