Devsecops Engineer - London, United Kingdom - IT Talent Solutions Ltd

IT Talent Solutions Ltd
IT Talent Solutions Ltd
Verified Company
London, United Kingdom

2 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

DevSecOps Engineer

Essential

  • Solid expertise within Software Development Lifecycle
  • Analysing the security of systems
  • Scanning, Security and Monitoring tools, etc.
  • Knowledge OWASP Top 10, WASC TCv2 wtc
  • Experience working on Cloud Platforms (
    GCP and Azure)


Our client an online Ecommerce driven platform are about to commence a large-scale modernisation journey and as part of this project they require an experienced DevSecOps Engineer to join the engineering team.


You'll be responsible for activities that improve our platform security, whether it's designing, implementing or verifying security solutions, security is your No.1 priority This includes a robust CI/CD pipeline, allowing code to be validated for qualityand security and deployed continuously.


Main responsibilities

  • Promote security best practices and a healthy security culture by providing knowledge and support to our developers
  • Design, develop, and implement security solutions
  • Work across the company to identify and mitigate security issues in the platform
  • Create, maintain, and improve secure development standards
  • Acting as a point of contact between the engineering department and the centralised security team
  • Proactively conduct research to identify new security threats
  • Build, integrate and maintain modern security tools, standards, and processes into
- our SDLC

  • Perform technical security assessments, security consulting, design reviews, code
- reviews, and vulnerability testing to highlight risk

  • Create scripts and templates to automate to increase system efficiency and reduce
- human intervention time on tasks

  • Participate in health monitoring and incident support of software delivered into
  • Production environments by the Team as required (including Out of Hours if
- necessary)

  • Monitor the company's security, backup, and redundancy strategies
  • Working closely with development teams to support a continuous automated
- integration (CI) and continuous delivery (CD)


Role requirements

  • Bachelor's degree or higher in Software Engineering, Computer Science, or equivalent practical experience.
  • More than three years' experience in a
    DevSecOps or Security Engineer role
  • Solid expertise within Software Development Lifecycle
practices and threat modelling.

  • Solid understanding of security vulnerabilities and mitigation strategies.
  • Excellent analytical, problemsolving, and interpersonal skills.
  • Demonstrated experience in analysing the security of systems, including Key Management, Certificate Management, Encryption, Penetration Testing, Vulnerability
  • Scanning, Security and Monitoring tools, etc.
  • Knowledge and experience of industry standards, such as OWASP Top 10, WASC TCv2, MITRE/SANS CWE 25 and so on
  • Experience working on Cloud Platforms (GCP and Azure)
  • Familiarity with GCP & Microsoft Azure Policy, Configuration, and Security Management tools
  • Familiarity with API Security, Container Security, GCP & Azure Cloud Security
More jobs from IT Talent Solutions Ltd
See all jobs of IT Talent Solutions Ltd