Security Engineer

We are hiring experienced DevSecOps Engineer to help us build secure and functional systems that improve customer experience

You will be responsible for identifying production issues, Vulnerability Scanning, Certificate Management, Password Policy Management, Data Analysis of security monitoring outputs, coordination of Remediation Patching, and other daily Application, Security and Compliance efforts.

Additionally, you will assist in developing an automated framework for robust security tools and processes, leveraging various scripting languages and open source solutions.

Objectives of this Role

• Building, setting up and securing running applications, platforms, systems, cloud and network infrastructure
• Understanding the needs of different stakeholders, such as software developers and ensuring compliance with security best practices & processes
• Automating, securing and improving development and release processes
• Ensuring that cloud environment and relevant services and systems are safe and security complaint against cybersecurity attacks and threats
• Identifying & remediating security risks and implementing software security updates, patches and fixes
  
  

Daily and Monthly Responsibilities

• Manage & maintain security updates, patching and fixes
• Provide Security incident responses
• Design, evaluate, implement and support security-focused tools such as vulnerability, patching, pen testing, etc management tools
• Vulnerability scanning, analyzing results, and remediating the findings for application source code written by others, Docker images, & the Kubernetes running environment.
• Apply pen-testing techniques, analyze, and remediate the security risks and findings.
• Configure, maintain & tune Firewall, RBAC & WAF policies and analyze traffic patterns
• Certificate, IAM, RBAC, password policy management
• Reduce occurrences of false positive issues and improve customer experience
  
  

Skills And Qualifications

• 3+ years experience in relevant positions
• BSc in Computer Science, Engineering or relevant field
• Experience as a DevSecOps Engineer or similar software engineering role
• Experience with DevOps tools, including CI/CD, git and git workflows
• Experience with TCP/IP, API Security, Container Security, WAF, kubernetes, Cloud Security configurations and management tools
• Comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc.
• Knowledge of OWASP, CWE, GDPR and PCI-DSS Standards and Policies
• Experience with security automation and machine learning.
• Knowledge in node.js, Java and Bash, Python, or other scripting languages.
• Working knowledge of databases and SQL
• Problem-solving attitude
• Collaborative team spirit