DevSecOps Engineer - Vulnerability Assessment

Job Description :

Key Responsibilities :

- Conduct security reviews, vulnerability assessments, and penetration testing.

- Automate security testing using tools such as Snyk, SonarQube, Checkmarx, or OWASP ZAP.

- Work closely with DevOps and development teams to remediate security issues.

- Implement container and Kubernetes security best practices.

- Ensure compliance with security standards (ISO 27001, SOC 2, GDPR, etc.).

- Monitor and respond to security incidents within cloud and on-prem environments.

- Develop and maintain Infrastructure as Code (IaC) with embedded security practices.

- Provide security training and awareness to development and DevOps teams.

Required Skills & Qualifications :

- 4 - 8 years of experience in DevOps, Cloud Security, or Application Security.

- Strong hands-on experience with CI/CD tools (Jenkins, GitLab CI/CD, Azure DevOps, etc.).

- Proficiency in cloud platforms (AWS, Azure, or GCP) with a focus on security services.

- Experience with container security (Docker, Kubernetes, EKS/AKS/GKE).

- Knowledge of IaC tools (Terraform, Ansible, CloudFormation) with security integration.

- Familiarity with security frameworks and tools (OWASP, NIST, CIS Benchmarks).

- Proficiency in scripting languages (Python, Bash, PowerShell, etc.).

- Strong understanding of network and application security principles.