Senior DevSecOps Engineer
Pune, Maharashtra, India
Guidepoint
Overview:
Guidepoint’s Engineering team thrives on problem-solving and creating happier users. As Guidepoint works to achieve its mission of making individuals, businesses, and the world smarter through personalized knowledge-sharing solutions, the engineering team is taking on challenges to improve our internal CRM system and create new products to optimize the seamless delivery of our services.
As a DevOps Engineer, you will be a core member of the DevOps team managing Kubernetes clusters and running SecOps for multiple PODS/Teams. In this role, you will train and enable engineers to follow Security best practices in a NIST framework. You will be responsible for developing and executing a Development Security Operations (DevOps) strategy to ensure quality software deployments and overall application health and performance.
What You’ll Do:
- Complete ownership of DevSecOps, supporting SAST/SCA/IAST and DAST activities in Enterprise Production, Development, and Test environments.
- Configure, Develop, and Manage Kubernetes cluster and Helm Charts
- Design, Implement, and maintain DevSecOps pipeline framework for engineers.
- Ensure SCA, SAST, DAST, and IAST test results are reviewed and approved by InfoSec.
- Supports, and collaborates with assigned PODS to ensure Security standards are well understood and criteria for Security is adhered to.
- Manage and Maintain DevSecOps tools – SonarQube, Veracode, Checkmarx, Github Advanced Security, AquaSec, Kube-Scan
- Support engineers as required with running SCA, SAST, IAST, and DAST tests.
- Instrument and integrate tools with DataDog and create security dashboards.
- Identify new tools to enhance the use of AI in DevSecOps
- Triage pipeline and act as SME on DevSecOps pipeline issues
- Ensure availability, reliability, Scalability, and performance of DevSecOps Automation
- Work closely with the InfoSec team to ensure adherence to Guidepoint’s security standards.
- Efficiently use cloudOps services to gain operational efficiency.
- Work closely with App Ops, Engineering, and CloudOps teams to resolve complex problems.
- Align and communicate effectively with stakeholders.
- Author and communicate Risk analysis for products/modules in the test.
- Implement, Manage, and Maintain Kubernetes cluster and Helm Charts
- Monitor Kubernetes cluster performance and health.
- Implement best practices for Kubernetes from Security, configuration, and scalability perspectives.
- Support engineer teams deploy containers in Kubernetes.
What You Have:
- 4-5 years of experience working on DevSecOps
- 3+ years of experience in automation and administering in Kubernetes and Helm Charts
- 3 + years of experience with Docker/Quay
- 2+ years of experience in scripting - Python, Jason, Bash, Perl, PowerShell,
- 2+ years of supporting DevSecOps pipelines for SAST, SCA, IAST, and DAST using SonarCube/Veracode
- 2 years of Automatic service remediation methodologies using DataDog/Splunk or Zabbix alerts and events.
- Strong troubleshooting & debugging capabilities in an agile software development team environment.
- Ability to combine functional, conceptual, and technical knowledge to offer creative solutions to the CloudOps team,
- Well-versed in git version control.
- Certifications in Kubernetes are a huge plus.
What We Offer:
- Competitive compensation
- Employee medical coverage
- Central office location
- Entrepreneurial environment, autonomy, and fast decisions
- Casual work environment
About Guidepoint:
Guidepoint is a leading research enablement platform designed to advance understanding and empower our clients’ decision-making process. Powered by innovative technology, real-time data, and hard-to-source expertise, we help our clients to turn answers into action.
Backed by a network of nearly 1.5 million experts and Guidepoint’s 1,300 employees worldwide, we inform leading organizations’ research by delivering on-demand intelligence and research on request. With Guidepoint, companies and investors can better navigate the abundance of information available today, making it both more useful and more powerful.
At Guidepoint, our success relies on the diversity of our employees, advisors, and client base, which allows us to create connections that offer a wealth of perspectives. We are committed to upholding policies that contribute to an equitable and welcoming environment for our community, regardless of background, identity, or experience.
#LI-NJ1
#LI-HYBRID
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile AquaSec Automation Bash Checkmarx Cloud DAST DevOps DevSecOps Docker GitHub Helm IAST Kubernetes NIST Perl PowerShell Python Risk analysis SAST Scripting SecOps SonarQube Splunk Strategy Veracode
Perks/benefits: Competitive pay Health care Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs