DevSecOps Engineer
Remote, Toronto, ON
Tucows
Tucows offers Domain Name Services, Fiber Internet Services and SaaS through our businesses Tucows Domains, Ting and Wavelo. We're a tech company headquartered in Toronto, Canada, making the internet better since 1993.Tucows (NASDAQ:TCX, TSX:TC) is possibly the biggest Internet company you’ve never heard of. We started as a simple shareware site in 1993 and have grown into a stable of businesses; mobile, internet and domains.
We embrace a people-first philosophy that is rooted in respect, trust, and flexibility. We believe that whatever works for our employees is what works best for us. It’s also why the majority of our roles are remote-first, meaning you can work from anywhere you can connect to the internet!
Today, close to a thousand people work in over 16 countries to help us make the Internet better. If this sounds exciting to you, join the herd!
What you will do:
As a DevSecOps Engineer with the Infrastructure-as-a-Service team, you will be responsible for implementing and evangelizing Security-as-Code and Policy-as-Code best practices. Your aim will be to harden Infra-as-Code Ci/Cd pipelines from internal cybersecurity vulnerabilities; while ensuring high-pace automation delivers reliable cloud infrastructure to our internal consumers.
Employing Zero-Trust strategies, you will work closely with the SecOps team to automatically enforce policies, secret management, CVE scanning, and related practices; recommending improvements that harden security and facilitate automated development workflows.
You will demonstrate or grow your expertise with Checkov.io, and other SAST tools to resolutely maintain the security of our Infra-as-Code, VCS repositories, and CI/CD pipelines across all environments.
Who you are:
- Strong Cybersecurity / DevSecOps background [CCSP or equivalent experience]
- Strong Secret Management experience [Hashicorp Vault or equivalent] in an automated workflow
- Security-as-Code development & engineering [Checkov.io or equivalent]
- Experience in CI/CD software development life cycle
- Experience in implementing Zero-Trust Strategies & Concepts
- “A passion for automation”
What you bring:
- Proven DevOps Tools/Skills
- terraform OR a Infra-as-Code tool
- OpenStack, OR a Cloud Platform
- python or bash, OR a Scripting language
- Ansible or SaltStack OR a Configuration Management tool
- Container development & security
- Linux System Security admin/maintenance
- CIS Compliance
- Security/CVE Patching & Software/Image Security Scanning tools
- SELinux / AppArmor [only familiarity]
Nice-to-have:
- Kubernetes/Docker administration
- kubeadm or docker swarm
- Hashicorp Tools
- Packer
- Nomad
- Consul
- Other Linux/System Administration skills
- PKI administration
- TLS/SSL encryption
- Automated Certificate Renewal/Installation
Want to know more about what we stand for? At Tucows we care about protecting the open Internet, narrowing the digital divide, and supporting fairness and equality.
We also know that diversity drives innovation. We are committed to inclusion across race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status or disability status. We celebrate multiple approaches and diverse points of view.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation.
Learn more about Tucows, our culture and employee benefits on our site here.
Tags: Ansible Automation Bash CCSP CI/CD Cloud Compliance DevOps DevSecOps Docker Encryption Kubernetes Linux OpenStack PKI Python SAST Scripting SDLC SecOps Terraform TLS Vulnerabilities
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open IPS-related jobs
- Open CEH-related jobs