About the job DevSecops
Job Title: DevSecOps Engineer
Company Overview:
Hiring one our innovative technology company that standardizes, automates, and centralizes the subcontracting process for buyers and suppliers in the manufacturing industry. It has developed the best technological solution for all companies that have manufacturing needs or capabilities in CNC machining, sheet metal, and welded assembly. All this to make the process easier, faster, and less expensive than the traditional method.
We are seeking a highly skilled DevSecOps Engineer to join our team and play a crucial role in ensuring the security, reliability, and efficiency of our AWS infrastructure. The ideal candidate will have a strong background in AWS, expertise in implementing security measures throughout the development lifecycle, and a proactive mindset towards issue resolution and continuous improvement. This role will involve improving monitoring systems, conducting application testing, overseeing the SOC2 compliance process using Drata, and promptly addressing any infrastructure-related issues that arise.
Key Responsibilities:
AWS Infrastructure Management:
Design, deploy, and manage AWS infrastructure components ensuring scalability, reliability, and security.
Implement best practices for AWS security, including IAM policies, VPC configurations, encryption, and access controls.
Monitoring and Alerting:
Enhance existing monitoring systems to provide comprehensive visibility into the infrastructure, applications, and security posture.
Configure alerts and automated responses to detect and mitigate security threats, performance issues, and potential vulnerabilities.
Application Testing:
Develop and execute automated testing procedures to identify and remediate vulnerabilities in applications and infrastructure.
Collaborate with development teams to integrate security testing into the CI/CD pipeline, ensuring security is baked into every release.
SOC2 Compliance:
Lead the efforts to maintain SOC2 compliance, including documentation, audits, and remediation activities.
Utilize Drata or similar tools to streamline and automate the SOC2 compliance process, ensuring adherence to industry standards and regulatory requirements.
Issue Resolution and Proactive Maintenance:
Proactively identify and address issues within the infrastructure, applications, and security controls.
Implement preventive measures and perform root cause analysis to prevent the recurrence of incidents.
Participate in on-call rotation and respond to emergencies in a timely manner.
Qualifications:
Bachelors degree in Computer Science, Information Technology, or related field.
Extensive experience with AWS services, including EC2, S3, RDS, IAM, Lambda, and Cloud Formation.
Proficiency in scripting languages such as Python, Bash, or PowerShell.
Solid understanding of DevOps principles and practices, including CI/CD pipelines, infrastructure as code (IaC), and configuration management tools (e.g., Terraform, Ansible).
Hands-on experience with security tools and frameworks such as vulnerability scanners, intrusion detection/prevention systems, and SIEM solutions.
Familiarity with SOC2 compliance requirements and experience with compliance automation platforms like Drata is a plus.
Strong problem-solving skills and the ability to troubleshoot complex issues in distributed systems.
Excellent communication skills and the ability to collaborate effectively with cross-functional teams.
Other Details:
Experience: 5+years
Location: Remote
Timings: 10am to 7pm
Salary: In CAD (TaxFree)
About HR Ways: HR Ways is a Technical Recruitment Firm helping software houses and IT Product companies Internationally and Locally to find IT Talent. HR Ways is engaged by 150 + Employers ranging from worlds biggest SaaS Companies to most competitive Startups. Find out more at www.hrways.co
Please share your resume at fakyha@hrways.co (not com)
Helpful Links:
FAQs: www.hrways.co/faq
Jobs: www.hrways.co/jobs
Blogs: www.hrways.co/blog