Milano, Pisa, Torino, Roma, Collecchio, Castellazzo Bormida

Senior DevSecOps Engineer

In base all'esperienza
No freelancer
40% remoto
Full Time

PythonMicrosoft AzureJavaGoogle Cloud PlatformDevOpsAWS

Candidati Candidati

Condividi su

Senior DevSecOps Engineer

Descrizione dell'offerta di lavoro

Contract and locations
· Contract Type: Full-time, permanent contract.
· Locations: Milan, Pisa, Turin, Roma, Collecchio, Castellazzo Bormida

Enjoy a hybrid work culture that offers the best of remote flexibility and in-person collaboration.

Your role
Your duties and responsibilities:
  • Work with cloud platform teams to design, develop, debug and support platforms, services and application workspaces.
  • Work with the application teams to design, develop, debug and support new cloud-native applications and migrate existing applications to the cloud.
  • Regularly evaluate the best cloud applications, hardware, and practices to keep the enterprise Cloud up to date with the best of breed available in the industry.
  • Maintain strong and continuous engagement with security SMEs internally and externally to ensure the enterprise Cloud architecture and operating model is up to the top security standards.
  • Work with stakeholders to understand customers' needs and to implement the cloud strategies accordingly.

.Your skills, experience, and qualifications
  • Authentication/authorization implementations.
  • Application of encryption at rest and in transit
  • Certificates/secrets implementations
  • Implementing security in public clouds ( AWS, Azure, GCP), with at least 3 years specific experience in either AWS or Azure.
  • Secure microservices architectures in a cloud-native environment.Understanding of networking.
  • Knowledge of different deployment models (Container, Serverless, Cloud, PaaS, IaaS …).
  • SSDLC practices in DevOps, CI/CD environment.
  • OWASP Top 10, SANS CWE, OpenSAMM, BSIMM, etc.
  • Penetration testing, vulnerability scanning.
  • Implementation of security monitoring tools.
  • Implementing pipelines that make use of SCA, SAST, DAST, IAST and RASP solutions.

  • SANS/SEC-540: Cloud Security and DevSecOps Automation
  • Systems Security Certified Practitioner (SSCP)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Authorization Professional (CAP)
  • Certified Secure Software Lifecycle Professional (CSSLP)
  • HealthCare Information Security and Privacy Practitioner (HCISPP)

  • Experience in Threat Modeling.
  • Experience with Kubernetes, Openshift, Service Mesh.
  • Experience with clouds (AWS, Azure, GCP)
  • Experience with getting or maintaining certified standards (i.e.  ISO 27001, PCI DSS, MIL-SPEC)
Example technologies
  • IAM: Key Cloak, ForgeRock, Okta, Azure Active Directory B2C, x509 Mutual TLS (OpenId Connect/OIDC/SAML)
  • Secrets: AWS KMS/AWS Secrets Manager, Azure Key Vault, Hashicorp Vault, CyberArk Conjur
  • Code security tools: SonarQube, BlackDuck, Veracode, Snyk
  • Container security tools: Aquasec, Twistlock, Clare, Qualys, Sysdig
  • Cloud security tools: Rapid7, Netskope, AWS Security Hub, Azure Security Center, GCP Cloud Security Command Center
  • Cloud platforms: AWS, Azure, GCP.
  • Container platforms: OpenShift, Kubernetes, Swarm.
  • CI/CD platforms:  Jenkins, Spinnaker, Argo CD, Azure DevOps, AWS CodeStar, GCP Cloud Build.
  • Artifact platforms: Nexus, Artifactory.
  • Languages: Bash, PowerShell, Python, Node.js, Go, Rust, Java.
  • Orchestration tools: Terraform, Pulumi, CloudFormation templates, ARM templates, GCP Deployment Manager templates.
  • Configuration management tools: Ansible, Chef, Puppet, Salt.

Riguardo a questa azienda

Offerte simili

Cosa aspetti?

Entra a far parte di GeekandJob, e trova oggi il prossimo lavoro dei tuoi sogni!