Grant-Peters Associates - New York, NY

posted 4 months ago

Full-time - Mid Level
New York, NY

About the position

Our client, an extremely successful international investment bank, is looking for a DevSecOps Engineer to be part of a team responsible for security projects designed to safeguard Capital Market's information systems. In this role, you will perform technical research and development of innovative technical solutions both on-premises and in the cloud to enhance security and risk functions. Your expertise will be crucial in automating threat management functions through your programming and scripting skills. Additionally, you will ensure that cloud services are properly configured, deployed, and maintained to meet security standards and best practices. As a DevSecOps Engineer, you will collaborate with cross-functional teams to integrate security practices into the software development lifecycle (SDLC). This includes conducting security checks within a secure SDLC pipeline and ensuring that all security measures are effectively implemented. You will also be responsible for identifying vulnerabilities and implementing solutions to mitigate risks associated with application security. Your role will require a proactive approach to security, leveraging your knowledge of DevOps practices to enhance the overall security posture of the organization. Candidates must have a minimum of 4 years of relevant application cybersecurity experience, coupled with some experience in DevOps practices, including continuous integration and continuous deployment (CI/CD) tools such as Jenkins, Git, GitHub Actions, and Artifactory. Familiarity with infrastructure as code tools like Terraform or CloudFormation, as well as container orchestration tools such as Kubernetes, OpenShift, EKS, and AKS, is essential. You should also have practical experience in automating processes using a scripting language, which will be vital in streamlining security operations and enhancing efficiency.

Responsibilities

  • Perform technical research and development of innovative technical solutions for security and risk functions.
  • Automate threat management functions using programming and scripting skills.
  • Ensure proper configuration, deployment, and maintenance of cloud services.
  • Integrate security practices into the software development lifecycle (SDLC).
  • Conduct security checks within a secure SDLC pipeline.
  • Identify vulnerabilities and implement solutions to mitigate risks.
  • Collaborate with cross-functional teams to enhance the overall security posture.

Requirements

  • 4+ years of relevant application cybersecurity experience.
  • Experience with DevOps practices including CI/CD tools (Jenkins, Git, GitHub Actions, Artifactory).
  • Familiarity with infrastructure as code tools (Terraform, CloudFormation).
  • Experience with container orchestration tools (Kubernetes, OpenShift, EKS, AKS).
  • Proficiency in automation using a scripting language.
  • Practical experience performing security checks within a secure SDLC pipeline.

Benefits

  • Significant bonus
  • Excellent benefits package
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service