Senior DevSecOps Engineer

Overview: 

Guidepoint’s Engineering team thrives on problem-solving and creating happier users. As Guidepoint works to achieve its mission of making individuals, businesses, and the world smarter through personalized knowledge-sharing solutions, the engineering team is taking on challenges to improve our internal CRM system and create new products to optimize the seamless delivery of our services.

As a DevOps Engineer, you will be a core member of the DevOps team managing Kubernetes clusters and running SecOps for multiple PODS/Teams. In this role, you will train and enable engineers to follow Security best practices in a NIST framework. You will be responsible for developing and executing a  Development Security Operations (DevOps) strategy to ensure quality software deployments and overall application health and performance. 

What You’ll Do: 

• Complete ownership of DevSecOps, supporting SAST/SCA/IAST and DAST activities in Enterprise Production, Development, and Test environments.
• Configure, Develop, and Manage Kubernetes cluster and Helm Charts
• Design, Implement, and maintain DevSecOps pipeline framework for engineers.
• Ensure SCA, SAST, DAST, and IAST test results are reviewed and approved by InfoSec.
• Supports, and collaborates with assigned PODS to ensure Security standards are well understood and criteria for Security is adhered to.
• Manage and Maintain DevSecOps tools – SonarQube, Veracode, Checkmarx, Github Advanced Security, AquaSec, Kube-Scan
• Support engineers as required with running SCA, SAST, IAST, and DAST tests.
• Instrument and integrate tools with DataDog and create security dashboards.
• Identify new tools to enhance the use of AI in DevSecOps
• Triage pipeline and act as SME on DevSecOps pipeline issues
• Ensure availability, reliability, Scalability, and performance of DevSecOps Automation
• Work closely with the InfoSec team to ensure adherence to Guidepoint’s security standards.
• Efficiently use cloudOps services to gain operational efficiency.
• Work closely with App Ops, Engineering, and CloudOps teams to resolve complex problems.
• Align and communicate effectively with stakeholders.
• Author and communicate Risk analysis for products/modules in the test.
• Implement, Manage, and Maintain Kubernetes cluster and Helm Charts
• Monitor Kubernetes cluster performance and health.
• Implement best practices for Kubernetes from Security, configuration, and scalability perspectives.
• Support engineer teams deploy containers in Kubernetes.

 What You Have: 

• 4-5 years of experience working on DevSecOps
• 3+ years of experience in automation and administering in Kubernetes and Helm Charts
• 3 + years of experience with Docker/Quay
• 2+ years of experience in scripting - Python, Jason, Bash, Perl, PowerShell,
• 2+ years of supporting DevSecOps pipelines for SAST, SCA, IAST, and DAST using SonarCube/Veracode
• 2 years of Automatic service remediation methodologies using DataDog/Splunk or Zabbix alerts and events.
• Strong troubleshooting & debugging capabilities in an agile software development team environment.
• Ability to combine functional, conceptual, and technical knowledge to offer creative solutions to the CloudOps team,
• Well-versed in git version control.
• Certifications in Kubernetes are a huge plus.

What We Offer: 

• Competitive compensation
• Employee medical coverage
• Central office location
• Entrepreneurial environment, autonomy, and fast decisions
• Casual work environment

About Guidepoint: 

Guidepoint is a leading research enablement platform designed to advance understanding and empower our clients’ decision-making process. Powered by innovative technology, real-time data, and hard-to-source expertise, we help our clients to turn answers into action. 

Backed by a network of nearly 1.5 million experts and Guidepoint’s 1,300 employees worldwide, we inform leading organizations’ research by delivering on-demand intelligence and research on request. With Guidepoint, companies and investors can better navigate the abundance of information available today, making it both more useful and more powerful. 

At Guidepoint, our success relies on the diversity of our employees, advisors, and client base, which allows us to create connections that offer a wealth of perspectives. We are committed to upholding policies that contribute to an equitable and welcoming environment for our community, regardless of background, identity, or experience. 

#LI-NJ1

#LI-HYBRID