Automation and Devsecops

Work Location

Role:

Experience:

Skills:

At Company we take pride in delivering the comprehensive Information Security Services to our Internal customers. The Security services are based on Security platforms hosted on SaaS and IaaS platforms on private and public cloud service providers. The DevOps engineer will work in developing and implementing infrastructure in support of Web and backend applications deployment in the Information Security Services division. This position will closely work with TechOps team, Cloud providers and OEMs to ensure integration and automation towards efficient, clean and reusable code base to empower DevOps in our Security Services area.

Key Skills:

 Collaborate with development and operations teams to design, build, and deploy applications/scripts that automate routine manual processes, with a strong focus on security orchestration and automated response (SOAR) capabilities.

 Proficient in developing Python scripts to automate routine tasks using cron jobs, scheduler services,or any workflow management tools, particularly in the context of security automation.

 Ability to work closely with the operations team to understand, support, and resolve all technical challenges in routine operations, with a focus on enhancing security measures through automation.

 Identify areas for improvement in existing programs and develop modifications that enhance security and automate response actions.

 Possess strong analytical and debugging skills, especially in the context of security incident response and automation.

 Demonstrated experience in integrating REST API frameworks with third-party applications, particularly for security orchestration purposes.

 Knowledge of DevOps tools like Jenkins, Terraform, AWS CloudFormation, and Kubernetes, with an emphasis on their use in security automation.

 Hands-on experience working with DBMS like MySQL, PostgreSQL, and NoSQL, with a focus on secure data management.

 Comfortable working with Linux OS, especially in environments requiring secure configurations and automated security responses.

 Keen interest and proven track record in automation both on-premise and in the cloud, with a focus on security orchestration and automated response.

 Expertise in Git, Jenkins, and JIRA is a plus, particularly in the context of managing security-related projects.

Primarily Skill required:

 Deep understanding of security concepts and the ability to work with security analysts to implement automation requirements for security orchestration and automated response.

 Scripting – Python (Mandatory), JavaScript/Shell scripting, with a focus on security automation.

 Jenkins, GitHub Actions - CI/CD, with a focus on automating security processes.

 Containerized infrastructure management – Docker, Podman, K8s, with an emphasis on secure deployments.

 AWS, Azure – ability to provision and manage infrastructure securely.

 Version control systems - Git, with a focus on managing security-related code and configurations.

Good to have

 Entry level security certification (CompTIA Security+ or similar)

 Ansible knowledge

 Understanding of reporting tools – e.g. Grafana

 Initial exposure for Google Security Operations (SIEM+SOAR) suite

Educational & Professional Qualifications

 Bachelor’s / Master’s full-time degree in a Technical stream