Devsecops Engineer

Job Description

You will be part of our infrastructure operations team. You will be responsible to keep our network infrastructure, system, database and application secure from all kinds of internal and external threats. We are looking for a person that knows IT security in theory AND practice, as you will be in charge to not only write the policies but also implement them.

Day to Day Operations:

  • Evaluate, select, design, and configure security infrastructure systems in a global environment
  • Implementation of security in Cloud and Local environments.
  • Run vulnerability assessment and penetration testing.
  • Providing security guidelines to internal teams.
  • Implementing the security solutions to ensure pre-emptive measures.
  • Building and tracking security metrics.
  • Fully engaged in the implementation of a DevOps practices for supporting IT
  • Employ Continuous Integration/Continuous Delivery (CI/CD) methodology to enable automation in building, testing, and deployment of applications.
  • Be responsible for the planning, implementation, and growth of the AWS cloud infrastructure
  • Security threat mitigation.
  • Make our environments compliant with the data protection regulations.
  • Respond to security events, take corrective measures, and run forensics reporting.
  • Ensure visibility across all systems and applications, including, but not limited to, availability, performance, and security with support from other engineers
  • Define and maintain a security framework for the company
  • Monitor production workloads using best practices and the latest tools
  • Troubleshoot security system and related issues. Assist with complex projects and ongoing support of security operations. Conduct network and system tests via simulation or other means to highlight and find any weaknesses that may be exploited.
  • Monitor and Maintain our Zabbix and other monitoring and system tools.

Qualification and Experience:

  • BS Computer Science / Computer Engineering or equivalent
  • Minimum Experience – 2 to 4 years of professional experience in security operation engineer or similar capacity.
  • Hands-on experience in operations including network, system, application security.
  • Relevant Information Security Certifications.
  • Must be aware of secure coding techniques.
  • Strong knowledge of security industry standards.
  • Knowledge and experience of audit reviews, risk treatment, secure SDLC, vulnerability fixing secure configurations, patch management.
  • Knowledge and experience in using computer forensic tools, technologies, and methods.
  • Experience with AWS Platform and cloud security.
  • Good written and verbal communication skills.
  • Knowledge of PCI-DSS, HIPPA, SOX, GDPR, and CCPA Standards and Policies
  • Familiarity with Amazon AWS Policy, Configuration, and Security Management tools
  • Familiarity with API Security, Container Security, AWS Cloud Security
  • Knowledge of Windows and Linux patch management and related information security functions (authentication, encryption, iptables, SSL, Ciphers, etc)
  • Ability to work with APIs and Plugins to integrate security tools into established CI/CD pipelines.
  • DevOps Automation: Terraform, Ansible, Git
  • Familiarity of Linux and Windows OS Administration

Job Summary

  • Published on:2022-04-05 2:32 am
  • Vacancy:1
  • Employment Status:Full Time
  • Experience:2 Years
  • Job Location:Karachi
  • Gender:No Preference
  • Application Deadline:2025-02-19