Aws Devsecops Engineer - London, United Kingdom - Jefferson Frank

Jefferson Frank

Verified Company

London, United Kingdom

2 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

AWS DevSecOps Engineer

Inside IR35

ASAP Start

6Month Contract + Extension

One a month onsite visit required - Swindon

2-3 Stage Interview

£600pd

Responsibilities:

Managing Governance, Risk, and Compliance:
Provide input to clients HARM and Unified Controls Assessment (UCA) processes, to ensure the security requirements for each release are accurately captured
Populate responses and evidence for the generated security controls
Coordinate testing with the Application Security Testing (AST) team to validate the responses
Coordinate release sign off with Group Security
Pen Testing and Vulnerability Management
Scope and schedule pen tests for releases and/or components, working with the internal team, or where required, the thirdparty provider
Track and drive remediation of penetration test findings, ensuring any open findings receive proper risk oversight
Review vulnerabilities from the integrated security tools, ensuring vulnerabilities are addressed or tracked with appropriate oversight
Support Security Architecture:
Provide input and security guidance on new releases, services, or components, including threat models, design reviews, and security architectures
Support design of security specific aspects of components and services
Support Security Monitoring:
Design new monitoring use cases in line with the threat models for new components or releases
Develop playbooks for the use cases
Coordinate with the SecOps and SOC teams to get the use cases implemented and playbooks tested