Need a DevSecOps Engineer

Closed Posted 2 years ago Paid on delivery
Closed Paid on delivery

Role: DevSecOps Engineer

Experience: More than 3 yrs

Notice Period: Immediate

Job description:

● Understand the concepts of assessing risk. Train and assess development teams for secure

best practices to secure the products.

● Configuring, and administrating technologies for the Security CI/CD Pipeline including SAST,

DAST, IAST, OSS.

● Help software development teams to understand, and remediate security findings

● Construct threat models with development teams

● Work with development teams throughout the entire SDLC to ensure code is secure by design,

and all the way through production deployment.

● Assist in the development of internal security policies, procedures, and guidelines.

● Perform VAPT and security business logic tests on the applications to make sure the products

are secure.

● Have knowledge of implementation/management of SIEM (Security and event monitoring).

● Be on track with the emerging security technologies and implement the same across the

products.

Required Knowledge and Skills:

● 3-5 years experience as a security professional

● 3-5 yrs. of experience or equivalent skills in writing secure software with modern languages

(Java, JavaScript, Net, etc.)

● Have strong knowledge on methodologies like OWASP, SANS, etc.

● Have hands-on experience in security tools like Veracode, Fortify, Appscan, etc.

● Excellent oral, and written communication

● Experience or understanding/implementation of DevSecOps practices, and CI/CD pipelines

(Jenkins, etc)

● Source control with Git, and code hosts such as Github, BitBucket, etc...

● Experience or understanding of Infrastructure as Code (Terraform, CloudFormation, etc.)

● Experience in Implementation of WAF rules in the cloud.

● Hand on experience in AWS clouds

● Have basic knowledge of Containerization with Docker, and related orchestration tools such as

Kubernetes, Nomad, etc...

● Security focused mindset, in addition to experience with security-oriented tooling, threat

modeling, etc

● Bachelor's degree in a related field of work or equivalent work experience.

● Any of the Security certifications like CISSP, ECSA, OSCP, etc is a plus

Certified Information Systems Security Professional (CISSP) AWS Lambda JavaScript Java .NET

Project ID: #31538252

About the project

3 proposals Remote project Active 2 years ago

3 freelancers are bidding on average ₹97667 for this job

abdf2010

Hi, It is easy,I can do on time.I work online, where you can track progress of your project.I have 6 years of experience in development(websites,web applications,mobile apps, desktop applications,UI/UX), using PHP, Wor More

₹80000 INR in 2 days
(0 Reviews)
0.0
dogangcr

I have strong security and software skills. I can check the code for SDLC perspective. Please kindly start message to me. Then we can talk the details with you.

₹100500 INR in 7 days
(0 Reviews)
0.0