Senior Devsecops Engineer

About The Team

We are building DevSecOps capability within Reltio which will help in creating Cybersecurity standards on multiple clouds such as AWS, GCP and Azure. This team will be responsible for security and helping the company scale it's cloud-based services through heavy focus on automation and continuous delivery.

Help TechOps team and various  solution Groups in  setting  time bound, clear and concise maturity and strategic goals to help them on their journey in DevSecOps and security adoption.

What Is Exciting About This Opportunity

• Dynamic pace and opportunity to work with the hottest technology (Linux, Cassandra, Elastic, Spark, Serverless architecture, Multi-cloud, Docker/K8S) in AWS  GCP, Azure.
• Exposed to challenging problems in blending MDM and Big Data worlds with a focus on performance optimization, reliability, and availability.
• Have the opportunity to bring new automated approaches to scalability, capacity management, and elasticity
  
  

Responsibilities

Senior Cloud DevSecOps Engineer/SME in infrastructure Security management and services for Reltio cloud services - MDM, RIQ, RDM, and other services or components that create the foundation of the core Reltio Product line. DevSecOps team is the first line of investigation and troubleshooting of the service reliability issues pertaining to DevSecOps.

Infrastructure and Automation and deployments:

• Serve as a source of technical expertise and a mentor across multiple DevSecOps member
• Knowledge of common information security management frameworks, such as HiPAA,ISO/IEC 27001, GDPR and NIST
• Minimum of 8 - 10 years of experience in a combination of risk management, information security, and IT jobs.
• Own delivery and deployment of all instances and capacity increases for AWS and GCP environments using the current provisioning automation tools. Own expectations to internal customers for delivery dates of infrastructure build-outs and deployments.
• Skilled in  Security requirements and standards, and trends in Security risks as well as technologies
• Hands on expertise  of container-based architecture for Cloud such as Docker, Kubernete and familiarity with Network Security and Kubernetes Network security such as Istio framework
• Hands-on exposure building and establishing elastic scalability of infrastructure and architectural patterns
• Drive System readiness and hardening to enable significantly highly secure throughput for peak season volumes 5x the regular volumes
• Sound DevSecOps (Core Infra, Security) domain knowledge managing Infrastructure at a very high Scale
• Own and ensure the security patching and updating for all Reltio services and applications.
• Identify opportunities and fix areas that do not conform to Reltio RASP Principles. Provide guidance and lead projects to ensure RASP Compliance as directed by Senior Engineering Leaders
• Work with Engineering teams to apply architecture knowledge to provide high availability cloud deployment solutions.
• Take ownership of complete Reltio Platform infrastructure's reliability

Daily Operations:

• Own the scheduling and staffing model for 24x7 Oncall support rotation for all DevSecOps team members. Act as primary escalation POC for critical cloud security issues. Escalate to senior engineering leaders, customer support, and product management where necessary.
• Ensure the team is trained in full-stack troubleshooting and effectively communicating findings to other teams. Improve hands-on skills in Linux, Cloud services, Cassandra, ElasticSearch, and Reltio applications management to ensure quick resolution on issues.
• Ensure alerting policy aligns with incident severity policy in all cases. Develop and have the team perform root-cause analysis on every incident. Templatize and develop automation recommendations for common alert situations.
• Vigilantly monitor and improve performance of platform components
• Continuously look for ways to optimize and streamline the Reltio infrastructure to facilitate a seamless experience for our customers
• Update status and prioritization of DevSecOps
•  jira issues and ensure the team commits to scheduled tasks and deliverables.
• Track and monitor SLAs for various services and infrastructure and work within the team to manage
• Own communications and status on key customer issues and collaborate with customer-facing teams on resolutions and timelines.
• Must have Software development experience in any programming language (Preferred: Java, Python. Acceptable: Ruby, Perl, PowerShell, Bash)
• Must have experience working with AWS Cloud Services, Networking and Security.
  
  

Required Skills

• Experience of automating and templating security processes and documentation for compliance purposes.
• Experience containerization and Kubernetes
• Min of 5 years’ experience hands on experience covering the likes of vulnerability assessments, data privacy, identify access management, maintaining, supporting and deploying large-scale enterprise systems in the cloud
• Experience of at least 2 active and passive security tooling (OWASP ZAP, Veracode, Checkmarx, Fiddler etc)
• 5+ years hands on experience in bigdata, data ingest pipelines, master data management, data analytics as SaaS services
• Proven experience in Amazon AWS/GCP and Solution architecture certification is a plus
• 6+ yrs experience in cloud-based infrastructure architecture, security advisement and deep experience in environment management, hardware topology design
• Strong Experience architecting and building reliable, highly available, scalable and distributed systems
• Experience with administration of NoSQL databases (Cassandra preferred) and distributed indexes
• Experience with environment monitoring and alerting with automated issue correction including Zabbix, SignalFx, Graphana
• 2+ yrs experience in Kubernetes based container orchestration
• 2+ yrs experience in infrastructure as code, application deployment and configuration using tools like AWS cloud formation, Terraform, CHEF, Ansible
• 2+ yrs experience source code control and management using github/bucket
• 2+ yrs experience in setting up CI/CD pipelines using Jenkins
• 3+yrs experience with Linux system administration
• 2+yrs experience with container technologies and Kubernetes
• Working experience with cost optimizations and use of tools like SpotInst, Cloud Health is a plus
• Understanding of performance and profiling techniques of complex systems is a plus
• Excellent communication skills
• Must have Software development experience in any programming language (Preferred: Java, Python. Acceptable: Ruby, Perl, PowerShell, Bash)
• BS/MS in computer science or equivalent experience

Work Experience

• 8+ years in implementing Security as a Code, Policy as a code for any AWS, Azure or GCP
• Around 8 years of experience in delivering cloud DevSecOps transformation programs.
• Ability to work in large scale SaaS model
• Good to have certification in AWS GCP or Azure Security and devops

Reltio is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. Reltio is committed to working with and providing reasonable accommodation to applicants with physical and mental disabilities.