DevSecOps Engineer

A financial firm is looking for a

DevSecOps Engineer to join their team in White Plains, NY.

Compensation: $130-150k

Responsibilities:

Focus on hands-on engineering and architecting cybersecurity solutions using industry's best practices to protect the firm from various threat actors

Work with Site Reliability Engineering and DevOps teams to design and automate security controls as part of their CI/CD pipelines

Scan and track the remediation of vulnerabilities in code, containers, and infrastructure as code

Implement automation to perform security compliance testing into the development lifecycle

Develop and Report Key Risk Indicators (KRIs) within the SSDLC processes working closely with Americas Division's Security and Testing Team

Create and present updates to management on periodic basis w.r.t accomplishments, challenges and risks associated with respective projects

Qualifications:

4+ years of hands-on security engineer and operations experience securing cloud environments and developing automation workflows

Experience in implementing security checks within a Secure SDLC Pipeline

Experience with CI/CD tools such as Jenkins, Git, Github Actions, Artifactory, etc.

Experience with Secrets Management, SCA, open-source tools

Scripting experience with one or more scripting languages: bash, python, perl, YAML

Hands on experience with infrastructure as code tools such as Terraform or Cloudformation

Familiarly with container orchestration technologies such as Kubernetes, Openshift, EKS, AKS

Experience with container image scanning and vulnerability management

AWS or Azure Certifications