LR065 Microservices DevSecOps Engineer I

Microservices DevSecOps Engineer I, is capable of baking security protocols into the DevOps microservices architecture development process. Leads the security strategy prevailing the application and cloud-based policy infrastructure. Works with DevOps engineers and Microservices engineers to meet user-end product and business needs, provide knowledge around cloud and application service development, as well as define and own clear alerts, and Security as Code (SaC) deployments to provide 24/7 protection from malicious attack, susceptibilities, and other attack vectors. Evaluate DevOps architectures and designs for security vulnerabilities, suggest and device appropriate alternatives. Build and maintain auditing, monitoring, and reporting frameworks to support security. Develop processes that produce artifacts that enhance security and compliance needs. Construct and maintain a set of apparatuses that enable developers to self-serve for most operating tasks. Creates new solutions for complex software development processes within an agile framework. Coordinates Application Security projects and facilities rendered to clients. Participates on other Security projects in global & leading companies operating different markets. Has substantial understanding of security paramount practices for client-server microservice architectures, concentrating largely on cloud-based server development. Have a BSc. degree or higher-level degree in Computer Science, Computer Engineering, or other related disciplines. Holds 2-5 years of experience working in microservices/DevSecOps/Software security position that implements enterprise-grade security solutions. Communicate with clients to define the best approach to maximize the security level of microservices applications. Experience with cloud-based security management SIEM/IDS/IPS tools, such as Dome9, AlienVault, Threat Stack, AlertLogic, Fortinet, Splunk. Scripting or programming experience with a popular modern programming language such as Java, Python and Ruby. Ability to keep up with modern attack vectors, remediation, vulnerabilities, and protection paradigms. Proactive, self-motivated and self-driven individual. Has knowledge of one or more SSO methodologies. Experience in executing security vulnerability assessments, a good understanding of regulations like SOX and PCI. Possesses strong interpersonal skills, oral and written communication skills.