DevSecOps Engineer

Tucows (NASDAQ:TCX, TSX:TC) is possibly the biggest Internet company you’ve never heard of. We started as a simple shareware site in 1993 and have grown into a stable of businesses; mobile, internet and domains.

We embrace a people-first philosophy that is rooted in respect, trust, and flexibility. We believe that whatever works for our employees is what works best for us. It’s also why the majority of our roles are remote-first, meaning you can work from anywhere you can connect to the internet!

Today, close to a thousand people work in over 16 countries to help us make the Internet better. If this sounds exciting to you, join the herd!

What you will do:

As a DevSecOps Engineer with the Infrastructure-as-a-Service team, you will be responsible for implementing and evangelizing Security-as-Code and Policy-as-Code best practices. Your aim will be to harden Infra-as-Code Ci/Cd pipelines from internal cybersecurity vulnerabilities; while ensuring high-pace automation delivers reliable cloud infrastructure to our internal consumers.

Employing Zero-Trust strategies, you will work closely with the SecOps team to automatically enforce policies, secret management, CVE scanning, and related practices; recommending improvements that harden security and facilitate automated development workflows.

You will demonstrate or grow your expertise with Checkov.io, and other SAST tools to resolutely maintain the security of our Infra-as-Code, VCS repositories, and CI/CD pipelines across all environments.

Who you are:

• Strong Cybersecurity / DevSecOps background [CCSP or equivalent experience]
• Strong Secret Management experience [Hashicorp Vault or equivalent] in an automated workflow
• Security-as-Code development & engineering [Checkov.io or equivalent]
• Experience in CI/CD software development life cycle
• Experience in implementing Zero-Trust Strategies & Concepts
• “A passion for automation”

What you bring:

• Proven DevOps Tools/Skills
• terraform OR a Infra-as-Code tool
• OpenStack, OR a Cloud Platform
• python or bash, OR a Scripting language
• Ansible or SaltStack OR a Configuration Management tool
• Container development & security
• Linux System Security admin/maintenance
• CIS Compliance
• Security/CVE Patching & Software/Image Security Scanning tools
• SELinux / AppArmor [only familiarity]

Nice-to-have:

• Kubernetes/Docker administration
• kubeadm or docker swarm
• Hashicorp Tools
• Packer
• Nomad
• Consul
• Other Linux/System Administration skills
• PKI administration
• TLS/SSL encryption
• Automated Certificate Renewal/Installation

Want to know more about what we stand for? At Tucows we care about protecting the open Internet, narrowing the digital divide, and supporting fairness and equality.

We also know that diversity drives innovation. We are committed to inclusion across race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status or disability status. We celebrate multiple approaches and diverse points of view.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation.

Learn more about Tucows, our culture and employee benefits on our site here.