Senior DevSecOps Engineer

Qgenda - Atlanta, GA

posted 24 days ago

Full-time - Senior
Atlanta, GA
501-1,000 employees
Professional, Scientific, and Technical Services

About the position

As a Senior DevSecOps Engineer at QGenda, you will play a crucial role in securing customer data, applications, and infrastructure against cybersecurity threats. You will collaborate with various teams to integrate security into the software development lifecycle, ensuring that security measures are embedded at every stage. Your expertise will be essential in assessing risks, designing security processes, and implementing security automation tools to protect the organization’s assets.

Responsibilities

  • Collaborate with Development, Operations, and Security Teams to integrate security into the CI/CD pipeline.
  • Lead projects to implement tools such as Static Application Security Test (SAST), Dynamic Application Security Test (DAST), and Source Code Analysis (SCA).
  • Identify security design gaps in existing and new architectures and recommend changes and enhancements.
  • Design, implement, and maintain security automation tools and processes to identify, manage, and remediate vulnerabilities.
  • Implement AWS security services such as GuardDuty, SecurityHub, Inspector, and Config.
  • Develop and enforce security policies, standards, and best practices for cloud-based infrastructure.
  • Perform regular security assessments, including code reviews, vulnerability scans, and infrastructure reviews.
  • Communicate security metrics and activities across various levels of the organization.
  • Lead efforts on performing security audits to adhere to SOC and FedRAMP standards.

Requirements

  • Experience implementing security tooling in CI/CD platforms, including SCA and SAST tools.
  • Ability to participate in software architecture discussions to ensure security best practices are implemented.
  • Deep knowledge and experience with AWS Security tools such as GuardDuty, SecurityHub, Inspector, and Config.
  • Proven experience developing, operating, and maintaining security systems.
  • Knowledge of DevOps Automation tools and experience with Terraform.
  • Extensive knowledge of operating system, network, and database security.
  • Experience with security tools such as Wiz and Mend/Snyk, or equivalent.
  • Proficiency in networking technologies, network security, and network monitoring solutions.
  • Knowledge of security systems including anti-virus applications, content filtering, firewalls, and intrusion detection systems.
  • Knowledge of Windows and Linux patch management and related information security functions.
  • In-depth knowledge of security protocols and principles.
  • Knowledge of risk assessment techniques and the latest security best practices.

Nice-to-haves

  • AWS Certifications (i.e. DevOps Engineer, Security Specialty)

Benefits

  • Fully company-paid options for medical, dental, and vision insurance.
  • Flexible paid time off (PTO) policy.
  • Paid parental leave for birth, adoption, or permanent placement.
  • 401(k) with company match.
  • Options to work in a hybrid-working model or remotely.
  • Annual Costco membership, cell phone stipend, commuter benefits, in-office perks.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service