about 2 hours ago
Responsibilities
- Design and implement security controls across CI/CD pipelines, cloud infrastructure, and software development workflows.
- Integrate security testing tools, including SAST, DAST, dependency scanning, and vulnerability management solutions.
- Conduct threat modeling and risk assessments for applications, infrastructure, and platform services.
- Implement and maintain security controls for cloud environments, infrastructure-as-code, and containerized workloads.
- Develop automated security and compliance checks supporting regulatory and internal security requirements.
- Partner with Engineering, Infrastructure, and Security teams to implement secure development practices.
- Evaluate, implement, and optimize security tooling supporting application and infrastructure security.
- Mentor engineers on secure development practices and DevSecOps methodologies.
Requirements
- 5+ years of experience in DevSecOps, Security Engineering, DevOps, or related engineering roles.
- Experience implementing security controls within CI/CD pipelines and software development workflows.
- Experience working with AWS or Azure in a production environment.
- Experience working with containerization and orchestration technologies (Docker, Kubernetes).
- Experience scripting or automating workflows using Python, Bash, Terraform, or similar technologies.