DevOps Security Engineer

DevOps Security Engineer Roles and Responsibilities Integrating security features in the software development life cycle and Identification and probable security risks with their mitigating strategies for the entire SSDLC Implementation of security controls and Monitoring of the threat to security related to SSDLC Ensuring regulatory compliances for standards of security Proficient in uniting crossfunctional teams and communicating clearly while fervently pursuing knowledge of the latest trends and technologies in security Build in security early and often within the SDLC so each of the phases identifies and mitigates the risks in the process Cultivate a security culture within the organization every stakeholder should know their responsibilities with the SSDLC Automate everything in the security testing and deployment process that you can possibly automate as more likely to be driven by human error Take a security riskbased approach focusing on all important but most critical assets and vulnerabilities Requirements 5 years in Development not just testing field and has chosen the path of security to build the career Knowledge on APIs and Micro segmentation cohesion and knowledge on isolated workload deployments Strong understanding of security concepts including threat modeling risk assessment and vulnerability management including shift left methodology towards SSDLC Knowledge of the SDLC and experience integrating security best practices at every process stage Familiarity with automation tools and scripting languages like Python and PowerShell Understanding cloud security principles including secure architecture design and configuration management Knowledge on Jenkins Gitlab Docker Kubernetes Ansible Terraform etc Core Authentication and Authorization principles that include Auth0 JWT etc Knowledge of container security principles such as Docker and Kubernetes Experience with DevOps practices such as continuous integration and delivery CI CD and infrastructure as code IaC Experience with various compliance frameworks and regulations PCIDSS HIPAA and GDPR Good analytical problemsolving skills to scrutinize and solve very intricate security problems with effective solutions Ability to work cohesively with crossfunctional teams and possess good communication skills Passionate about continued learning and being aware of current security trends and technologies Must have Certified Dev Sec Ops Professional CDP Certified Dev Sec Ops Expert CDE Location Qatar Onsite