Aws Devsecops Engineer - London, United Kingdom - Jefferson Frank
Description
AWS DevSecOps Engineer
Inside IR35
ASAP Start
6Month Contract + Extension
One a month onsite visit required - Swindon
2-3 Stage Interview
£600pd
Responsibilities:
- Managing Governance, Risk, and Compliance:
- Provide input to clients HARM and Unified Controls Assessment (UCA) processes, to ensure the security requirements for each release are accurately captured
- Populate responses and evidence for the generated security controls
- Coordinate testing with the Application Security Testing (AST) team to validate the responses
- Coordinate release sign off with Group Security
- Pen Testing and Vulnerability Management
- Scope and schedule pen tests for releases and/or components, working with the internal team, or where required, the thirdparty provider
- Track and drive remediation of penetration test findings, ensuring any open findings receive proper risk oversight
- Review vulnerabilities from the integrated security tools, ensuring vulnerabilities are addressed or tracked with appropriate oversight
- Support Security Architecture:
- Provide input and security guidance on new releases, services, or components, including threat models, design reviews, and security architectures
- Support design of security specific aspects of components and services
- Support Security Monitoring:
- Design new monitoring use cases in line with the threat models for new components or releases
- Develop playbooks for the use cases
- Coordinate with the SecOps and SOC teams to get the use cases implemented and playbooks tested
Required Skills:
- Solid understanding of AWS
- Experience delivering controls assessments
- Experience with CI/CD tools and integrated security tools, e.g. Snyk
- Experience creating security architecture for cloud environments/ tooling
- EKS
- Jenkins
- Gloo (Service Mesh / Istio)
- Experienced Agile Practitioner
- Experienced with using JIRA
Nice to Have:
- Splunk: Designing use cases / playbooks
- Kafka
- MongoDB
- Experience triaging and remediating vulnerabilities
More jobs from Jefferson Frank
-
Lead Software Engineer
London, United Kingdom - 3 weeks ago
-
Snowflake Analytics Engineer
City of London, United Kingdom - 2 weeks ago
-
Backend Engineer PHP Full Remote
Italy, United Kingdom - 2 weeks ago
-
Senior Software Engineer
United Kingdom - 1 week ago
-
Systems Engineer Outside Ir35 On Site
Greenford, United Kingdom - 1 week ago
-
Hpc Infrastructure Engineer
London, United Kingdom - 1 week ago