Senior DevSecOps Engineer
1012
JobID
Level
Senior
Department
DevOps
Type
Full Time
Locations
Poland | Ukraine | Romania
About the Project
At Dcode.tech, we are a global team of DevOps engineers and Developers who aspire to be experts in our domain and to give our clients the best and most effective solutions to their issues. We are looking for an experienced DevSecOps Engineer who is looking to push boundaries and learn how to become the best developers they can while giving the maximum impact to our clients.
Scope of work
- Collaborate with cross-functional teams to integrate security practices into the entire software development lifecycle.
- Automate security testing, vulnerability scanning, and compliance checks into the continuous integration and continuous deployment (CI/CD) pipeline.
- Design and implement security controls and compliance measures for cloud infrastructure and applications.
- Stay up-to-date with the latest security threats, technologies, and best practices, and ensure the team is informed about relevant developments.
- Develop and maintain documentation related to security policies, procedures, and best practices.
- Evaluate and recommend security tools and technologies to enhance the organization's security posture.
- Participate in security audits and compliance assessments as required.
- Keeping up-to-date on the latest security threats and best practices
- Monitor and respond to security incidents, conduct root cause analysis, and implement corrective actions.
- Create POC for a new tool.
Required skills
- Solid understanding of DevOps principles and practices, including CI/CD pipelines.
- Proficiency in scripting and automation (e.g., Python, Bash, PowerShell) to facilitate security tasks.
- Strong knowledge of cloud platforms and specifically AWS, and their security controls.
- Familiarity with containerization and orchestration technologies (e.g., Docker, Kubernetes) and their security implications.
- Experience with security testing tools and methodologies, such as static analysis, dynamic analysis, and penetration testing.
- Knowledge of security frameworks and standards (e.g., OWASP, NIST, CIS).
- Excellent communication skills to collaborate effectively with technical and non-technical stakeholders.
- Relevant security certifications (e.g., CISSP, CEH, CompTIA Security+) are a plus.
- Experience with compliance standards (e.g., GDPR, HIPAA, PCI DSS) is desirable.
- Ability to work in an agile and fast-paced environment, adapting to changing priorities.
- Bachelor's degree in computer science, engineering, or a related field
- 3+ years of experience in software development
- 2+ years of experience in security
- 5+ years experience in DevOps and tools and technologies
- Experience with automation
- Strong understanding of security principles and best practices
- Excellent problem-solving and analytical skills
- Excellent communication and teamwork skills
Required Skills
- - Solid understanding of DevOps principles and practices, including CI/CD pipelines.
- Proficiency in scripting and automation (e.g., Python, Bash, PowerShell) to facilitate security tasks.
- Strong knowledge of cloud platforms and specifically AWS, and their security controls.
- Familiarity with containerization and orchestration technologies (e.g., Docker, Kubernetes) and their security implications.
- Experience with security testing tools and methodologies, such as static analysis, dynamic analysis, and penetration testing.
- Knowledge of security frameworks and standards (e.g., OWASP, NIST, CIS).
- Excellent communication skills to collaborate effectively with technical and non-technical stakeholders.
- Relevant security certifications (e.g., CISSP, CEH, CompTIA Security+) are a plus.
- Experience with compliance standards (e.g., GDPR, HIPAA, PCI DSS) is desirable.
- Ability to work in an agile and fast-paced environment, adapting to changing priorities.
- Bachelor's degree in computer science, engineering, or a related field
- 3+ years of experience in software development
- 2+ years of experience in security
- 5+ years experience in DevOps and tools and technologies
- Experience with automation
- Strong understanding of security principles and best practices
- Excellent problem-solving and analytical skills
- Excellent communication and teamwork skills