Devsecops - London, United Kingdom - Jefferson Frank

Jefferson Frank
Jefferson Frank
Verified Company
London, United Kingdom

3 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

As a GCP DevSecOps Engineer, you will play a pivotal role in ensuring the security, reliability, and efficiency of our cloud-based infrastructure on Google Cloud Platform (GCP).

You will be responsible for the integration of security practices into the development and operational processes, promoting a DevSecOps culture, and driving continuous improvement in security best practices.


Responsibilities:


  • Collaborate with crossfunctional teams, including developers, operations, and security, to implement and maintain a secure and scalable GCP environment.
  • Develop and enhance CI/CD pipelines, automating security scans, testing, and deployment processes to ensure secure software delivery.
  • Conduct regular security assessments, vulnerability scans, and penetration tests to identify and address potential security weaknesses and risks.
  • Develop and maintain documentation for security policies, procedures, and guidelines to support compliance and audits.
  • Stay updated with the latest security threats, vulnerabilities, and best practices, and proactively implement appropriate security measures.
  • Assist in evaluating and selecting security tools, technologies, and frameworks to enhance the security posture of our GCP infrastructure.
  • Collaborate with other engineering teams to address security concerns during the design and development phases of projects.
  • Troubleshoot and resolve complex technical issues related to GCP security and performance.

Requirements:


  • Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (e.g., GCP Professional Cloud Security Engineer, Certified Kubernetes Security Specialist) are a plus.
  • Minimum of 5 years of experience in cloud computing, with a focus on GCP, and 3 to 4 years of experience in a DevSecOps or security engineering role.
  • Indepth knowledge of GCP services and architecture, with expertise in cloud security best practices.
  • Strong understanding of containerization technologies (Docker, Kubernetes) and their security implications.
  • Handson experience with security tools and practices such as vulnerability scanning, penetration testing, intrusion detection, and log analysis.
  • Proficiency in scripting and automation using Python, Shell, or other relevant languages.
  • Familiarity with compliance standards and frameworks (e.g., GDPR, PCI DSS, ISO and experience implementing security controls to meet these requirements.
  • Ability to work collaboratively in a fastpaced and agile environment, adapting to changing priorities and deadlines.
  • Excellent problemsolving skills and a proactive approach to identifying and resolving security issues.
  • Strong communication skills, with the ability to effectively convey complex technical concepts to nontechnical stakeholders.
More jobs from Jefferson Frank
See all jobs of Jefferson Frank