Glocomms is partnered with a revolutionary FinTech firm dedicated to transforming the lending industry for small and medium-sized businesses. The company's proprietary software is at the forefront of innovation, driving efficiency and accessibility in financial services.
The ideal DevSecOps Engineer is a self-starter with 5-10 years of experience in DevSecOps, particularly in AWS environments. As a key member of the Information Security team, you will play a crucial role in ensuring the security and reliability of the firm's software infrastructure.
Responsibilities
- Design, implement, and maintain security controls and processes in AWS environments
- Collaborate with development and operations teams to integrate security best practices throughout the software development lifecycle
- Conduct regular security assessments and audits to identify and mitigate vulnerabilities
- Monitor and respond to security incidents and alerts
- Stay up-to-date with the latest security trends and technologies
- Spearhead the development and management of CI/CD pipelines, automating software delivery and deployment processes to enhance productivity and software quality
- Drive the adoption of Infrastructure as Code principles, using CloudFormation and/or Terraform/OpenTofu to define and maintain AWS infrastructure, ensuring scalability and reliability
- Collaborate with cross-functional teams to manage multiple AWS environments, optimizing resource utilization and cost-effectiveness
- Lead the implementation of security best practices, conducting code scans, vulnerability assessments, and enforcing secure coding standards
- Leverage tools such as GitHub, AWS, Python, CloudFormation, CDK, and Atlassian products to streamline development and testing workflows, fostering a culture of continuous improvement
- Create and maintain automation scripts and tools to streamline repetitive tasks, improving operational efficiency and enabling team members to focus on strategic initiatives
Qualifications
- Bachelor's degree in Computer Science, Engineering, or related field
- 5-10 years of experience in DevSecOps or related field
- Strong experience with AWS services and security best practices
- Proficiency in scripting and automation using languages such as Python, Shell, or PowerShell
- Experience with containerization technologies (e.g., Docker, Kubernetes)
- Strong understanding of networking and web application security principles
- Relevant security certifications (e.g., CISSP, CISM, AWS Certified Security - Specialty) are a plus
Benefits
- Competitive salary and benefits package
- Opportunity to work with cutting-edge technologies in a fast-paced, collaborative environment
- Career growth and development opportunities