Devsecops - London, United Kingdom - Jefferson Frank
Description
As a GCP DevSecOps Engineer, you will play a pivotal role in ensuring the security, reliability, and efficiency of our cloud-based infrastructure on Google Cloud Platform (GCP).
You will be responsible for the integration of security practices into the development and operational processes, promoting a DevSecOps culture, and driving continuous improvement in security best practices.
Responsibilities:
- Collaborate with crossfunctional teams, including developers, operations, and security, to implement and maintain a secure and scalable GCP environment.
- Develop and enhance CI/CD pipelines, automating security scans, testing, and deployment processes to ensure secure software delivery.
- Conduct regular security assessments, vulnerability scans, and penetration tests to identify and address potential security weaknesses and risks.
- Develop and maintain documentation for security policies, procedures, and guidelines to support compliance and audits.
- Stay updated with the latest security threats, vulnerabilities, and best practices, and proactively implement appropriate security measures.
- Assist in evaluating and selecting security tools, technologies, and frameworks to enhance the security posture of our GCP infrastructure.
- Collaborate with other engineering teams to address security concerns during the design and development phases of projects.
- Troubleshoot and resolve complex technical issues related to GCP security and performance.
Requirements:
- Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (e.g., GCP Professional Cloud Security Engineer, Certified Kubernetes Security Specialist) are a plus.
- Minimum of 5 years of experience in cloud computing, with a focus on GCP, and 3 to 4 years of experience in a DevSecOps or security engineering role.
- Indepth knowledge of GCP services and architecture, with expertise in cloud security best practices.
- Strong understanding of containerization technologies (Docker, Kubernetes) and their security implications.
- Handson experience with security tools and practices such as vulnerability scanning, penetration testing, intrusion detection, and log analysis.
- Proficiency in scripting and automation using Python, Shell, or other relevant languages.
- Familiarity with compliance standards and frameworks (e.g., GDPR, PCI DSS, ISO and experience implementing security controls to meet these requirements.
- Ability to work collaboratively in a fastpaced and agile environment, adapting to changing priorities and deadlines.
- Excellent problemsolving skills and a proactive approach to identifying and resolving security issues.
- Strong communication skills, with the ability to effectively convey complex technical concepts to nontechnical stakeholders.
More jobs from Jefferson Frank
-
Database Engineer
London, United Kingdom - 3 weeks ago
-
Head of Data
London, United Kingdom - 3 weeks ago
-
Typescript Developer, London
London, United Kingdom - 3 weeks ago
-
AWS DevOps Engineer- REMOTE
Manchester, United Kingdom - 1 week ago
-
Senior Python Developer
London, United Kingdom - 1 week ago
-
Software Engineer
London, United Kingdom - 3 days ago