Experienced DevSecOps Engineers required for global financial services firm. You will lead initiatives to enhance their security posture by embedding the DevSecOps Maturity Model (DSOMM), implementing SAST/DAST tooling, and supporting SOC setup. You will also be working on a Salesforce project.
Key Responsibilities
DevSecOps Maturity Model (DSOMM):
* Assess and enhance the DevSecOps maturity level across teams.
* Collaborate with stakeholders to embed and continuously improve security practices.
SAST/DAST Implementation:
* Integrate SAST and DAST tools (eg, Veracode, SonarQube, OWASP ZAP) into CI/CD pipelines.
* Provide training on secure coding and vulnerability remediation.
Salesforce Security:
* Perform security assessments of Salesforce environments, ensuring compliance with best practices.
* Collaborate with Salesforce teams to integrate security measures.
SOC Implementation:
* Assist in setting up a Security Operations Center, including SIEM tool configuration (eg, Splunk, Sentinel).
* Develop monitoring, alerting, and incident response strategies.
Skills
* Hands-on DevSecOps experience
* Experience with Salesforce
* Knowledge of DevSecOps Maturity Model (DSOMM)
* SAST/DAST tooling experience
* Familiarity with SOC setup, SIEM tools, and incident response