Job Title

DevSecOps Engineer

Share This Job

Job Description

Company Introduction

Our client is a leading provider of back up software.

Job Responsibilities and Duties

  • Collaborate with Dev and QA teams to make your codebase more secure through automated tools, architecture, third-party libraries and code reviews;
  • Engage and participate in the security community and keep abreast with the latest developments;
  • Perform vulnerability testing, risk analysis and security assessments of applications, internal systems and hosted services;
  • Assist with threat modelling and create secure product features during planning and architectural stage;
  • Design, build and operate security tools and products including reviewing security event logs and alerts to maintain our production systems;
  • Champion security within the software development lifecycle;
  • Provide subject matter expertise on Company Managed Services, Web portals, Internal networks and corporate systems;
  • Audit and improve existing software products;
  • Provide first response, remediation, analyse root causes and develop mitigations including automation scripts for security-related incidents
  • Assist with security and compliance policies;
  • Participate in security audits;
  • Evaluate new technologies and processes that enhance our security posture;
  • Develop and provide practical security training to our internal user base;
  • Assist with overall team operations and other duties from time to time.

Experience

  • Experience in exploiting vulnerabilities, grey / black box and penetration testing using different security tools and solutions;
  • experience in defending against several areas of InfoSec;
  • Experience with OWASP Top 10 web-based security vulnerabilities;
  • Solid InfoSec engineering experience with solid technical security education and background.

Personal Skills

  • Good in-depth technical knowledge of security engineering, authentication, security protocols and applied cryptography;
  • Understand security in distributed systems;
  • Knowledge of GDPR, PCI, NIST, ISO 27001/2 and potentially health compliance e.g. HIPAA;
  • Ability to work in a team environment with management, operations, dev, compliance, regulators and customers;
  • Ability to analyse code, including .Net and PHP.
Tags: .NET, Compliance, GDPR, ISO 27001, PCI, PHP

Have a Question?

We are here to help. Email us or call +356 2017 3007
Contact Us