DevSecOps Security Engineer

7 - 9 Years

1 Opening

Bangalore, Chennai, Hyderabad, Kochi, Trivandrum

Role Proficiency:

Act under guidance of DevOps; leading more than 1 Agile team.

Outcomes:

• Interprets the DevOps Tool/feature/component design to develop/support the same in accordance with specifications

• Adapts existing DevOps solutions and creates relevant DevOps solutions for new contexts

• Codes debugs tests and documents and communicates DevOps development stages/status of DevOps develop/support issues

• Selects appropriate technical options for development such as reusing improving or reconfiguration of existing components

• Optimises efficiency cost and quality of DevOps process tools and technology development

• Validates results with user representatives; integrates and commissions the overall solution

• Helps Engineers troubleshoot issues that are novel/complex and are not covered by SOPs

• Design install and troubleshoot CI/CD pipelines and software

• Able to automate infrastructure provisioning on cloud/in-premises with the guidance of architects

• Provides guidance to DevOps Engineers so that they can support existing components

• Good understanding of Agile methodologies and is able to work with diverse teams

• Knowledge of more than 1 DevOps toolstack (AWS Azure GCP opensource)

Measures of Outcomes:

• Quality of Deliverables

• Error rate/completion rate at various stages of SDLC/PDLC

• of components/reused
  
• of domain/technology certification/ product certification obtained
  

• SLA/KPI for onboarding projects or applications

• Stakeholder Management

• Percentage achievement of specification/completeness/on-time delivery

Outputs Expected:

Automated components :

• Deliver components that automates parts to install components/configure of software/tools in on premises and on cloud

• Deliver components that automates parts of the build/deploy for applications

Configured components:

• Configure tools and automation framework into the overall DevOps design

Scripts:

• Develop/Support scripts (like Powershell/Shell/Python scripts) that automate installation/configuration/build/deployment tasks

Training/SOPs :

• Create Training plans/SOPs to help DevOps Engineers with DevOps activities and to in onboarding users

Measure Process Efficiency/Effectiveness:

• Deployment frequency
  
  innovation and technology changes.

Operations:

• Change lead time/volume

• Failed deployments

• Defect volume and escape rate

• Meantime to detection and recovery

Skill Examples:

• Experience in design installation and configuration to to troubleshoot CI/CD pipelines and software using Jenkins/Bamboo/Ansible/Puppet /Chef/PowerShell /Docker/Kubernetes

• Experience in Integrating with code quality/test analysis tools like Sonarqube/Cobertura/Clover

• Experience in Integrating build/deploy pipelines with test automation tools like Selenium/Junit/NUnit

• Experience in Scripting skills (Python Linux/Shell Perl Groovy PowerShell)

• Experience in Infrastructure automation skill (ansible/puppet/Chef/Poweshell)

• Experience in repository Management/Migration Automation – GIT BitBucket GitHub Clearcase

• Experience in build automation scripts – Maven Ant

• Experience in Artefact repository management – Nexus/Artifactory

• Experience in Dashboard Management & Automation- ELK/Splunk

• Experience in configuration of cloud infrastructure (AWS Azure Google)

• Experience in Migration of applications from on-premises to cloud infrastructures

• Experience in Working on Azure DevOps ARM (Azure Resource Manager) & DSC (Desired State Configuration) & Strong debugging skill in C# C Sharp and Dotnet

• Setting and Managing Jira projects and Git/Bitbucket repositories

• Skilled in containerization tools like Docker & Kubernetes

Knowledge Examples:

• Knowledge of Installation/Config/Build/Deploy processes and tools

• Knowledge of IAAS - Cloud providers (AWS Azure Google etc.) and their tool sets

• Knowledge of the application development lifecycle
• Knowledge of Quality Assurance processes
• Knowledge of Quality Automation processes and tools
• Knowledge of multiple tool stacks not just one
• Knowledge of Build and release Branching/Merging
• Knowledge about containerization
• Knowledge of Agile methodologies
• Knowledge of software security compliance (GDPR/OWASP) and tools (Blackduck/ veracode/ checkmarxs)

Additional Comments:

The Role The Security Engineer role is an innovative, self-driven team player who will be able to educate, provide guidance and advisory on hardening cloud infrastructure primarily. This individual will be an advocate for implementations that reinforce the security infrastructure. The Ideal candidate combines technical acumen with an ability to drive by influence and communicate clearly. Technically, this person will be security generalist with one or more areas of deep expertise in application security, infrastructure security in cloud environment . Key Responsibilities
• Security Engineer for the infrastructure security, will help to build a solid Security Infrastructure reputation in the field. In this role candidate is expected to have expertise to have hands-on mitigation cloud non-compliances preferably AWS.
• Candidate is expected to have 3+ years of experience in DevSecOps and overall 6+ years' experience.
• Drive the technology risk management program and conduct security risk assessments across the organization. Rank security risks, articulate risk in terms of business impact, recommend reasonable strategies to mitigate risks, appropriately document findings of assessments, and present to risk owners and management stakeholders.
• Manage the common control framework (CCF),CIS & NIST and evaluate control compliance in accordance with evaluation timelines, provide feedback, recommendations for gaps for identified gaps and issues, and document corrective action plans to remediate identified deficiencies.
• Identify and resolve security issues across the cloud infrastructure.
• Work with DevOps team to harden Containers /streamline infrastructure deployments in line with organization policies.
• Continuous monitoring of cloud compliance and advise DevOps teams on mitigation and contribute to terraform scripting for IaaC
• Design, implement, and manage network policies within Kubernetes to enhance security controls.
• Create /update and maintain threat model for infrastructure projects/software.
• Manual and Automated secure code review,terraforms, Automation
• Adversarial security analysis using cutting edge tools /open-source tools knowledge and manual effort.
• Influence your team's and Engineering process, priorities, and choices to improve outcomes.
• Experience in security controls and IT security framework, audits, control assessments, or risk assessments Required skills and Experience.
• Plan, research, and design security architectures
• Skills in Cloud infrastructure risks and compliance (Preferably AWS)
• Knowledge in cryptography, public key infrastructure, OWASP, NIST, CIS benchmark, DevSecOps
• Candidate with expertise in CI/CD pipeline design, integration, Terraform scripting, Apache Kafka, API security.
• Scripting knowledge in Ruby, Scala, Java
• Expertise in code review (Tool & manual)
• Expertise in Containerization, vulnerability management, AWS cloud services security Preferred Qualification
• 8+ years of experience working in an information security role.
• Experience deploying services in a multi-cloud environment.
• Good understanding and hands on skills in AWS cloud infrastructure
• Experience in hands-on penetration testing of applications, API
• Any Cloud certification (preferably AWS), designing networks, Kubernetes, Kafka solution architecture knowledge.
• Good knowledge in Network protocols, cloud services
• Candidate with expertise in application security, Scala , Terraform , NIST, CIS benchmark , threat model methodologies , STRIDE /MITRE

Devops,Aws,Terraform

UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world's best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients' organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.