DevSecOps Engineer
Description:
Job Title: DevOps Engineer,
Location: Tempe,AZ
Job Description
As a DevOps Engineer, you are joining a passionate software engineering team to build digital pathology products to change patients' lives. You will design & implement product infrastructure to automate infrastructure provisioning and troubleshoot issues.
Key Responsibilities:
Security Integration:
Integrate security tools, practices, and processes into the CI/CD pipeline.
Implement security best practices for code repositories, build processes, and deployment.
Collaborate with development teams to ensure secure coding standards are followed.
Automation:
Automate security testing (e.g., static code analysis, dynamic application security testing, and vulnerability scanning).
Develop and maintain infrastructure as code (IaC) scripts for secure deployment and configuration management.
Monitoring and Incident Response:
Monitor system vulnerabilities and automate patch management.
Establish and maintain real-time monitoring, alerting, and response procedures for security incidents.
Collaboration and Training:
Work closely with development and operations teams to integrate DevSecOps practices.
Provide training and support to team members on security best practices and tools.
Foster a culture of continuous improvement through feedback, automation, and innovation.
Documentation and Compliance:
Document security procedures, practices, and preventive measures.
Ensure compliance with industry standards and regulations (e.g., GDPR, HIPAA, PCI-DSS).
Qualifications:
Bachelor's Degree in Computer Science, Information Technology, Cybersecurity, or a related field. Equivalent work experience is also acceptable.
5+ years of experience in DevSecOps, DevOps, cybersecurity, or related fields in custom software development.
Proven experience with CI/CD tools such as Jenkins, Github Actions, or Azure DevOps.
Strong experience working with AWS platform and on premise deployments.
Proficiency in scripting languages (e.g., Python, Bash, PowerShell).
Strong understanding of containerization and orchestration tools (e.g., Docker, Kubernetes).
Knowledge of configuration management tools (e.g., Ansible, Puppet, Chef).
Preferred Qualifications:
Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), AWS Certified Security, or similar.
Excellent problem-solving and analytical skills.
Strong verbal and written communication skills.
Ability to work collaboratively in a fast-paced, agile environment.
Actively stays updated on the latest security trends, threats, and technology innovations