Automation of security controls in CI/CD and security validation and testing: SAST, DAST, IAST, RASP, SCA.
Collaboration with IT teams in adopting security requirements in cloud environments.
Security assessments in container environments (Docker, Kubernetes, and OpenShift) and Security implementation in IaC (Infrastructure as Code).
Analysis of evidence in assessing the cybersecurity maturity of an organization based on the DevSecOps software development philosophy.
Preparation of technical and executive reports.
Essential Technical:
Strong Kubernetes knowledge. Experience of working in an Agile Development Environment. Use Software Development methodologies spanning Agile to Waterfall, DevSecOps etc Strong Cloud knowledge, especially for DevOps and Infrastructure as Code (IaC).
Experience:
5 years’ experience as a Software Engineer 7 years’ of experience as an SRE, Dev(Sec)Ops Engineer, Security Engineer or similar Familiarity in one or more of the following languages: Javascript/NodeJS/Typescript, GoLang, Python Location : Must be onsite resources