DevSecOps Engineer

What you will do

As a DevSecOps Engineer at JCI(SRE Security), you will play a crucial role in ensuring the security and reliability of our cloud-based systems and applications. You will work closely with development, security, and operations teams to integrate security best practices into every phase of the software development lifecycle. You'll have the opportunity to leverage your technical expertise and creativity to design and implement innovative solutions that protect our organization from evolving cyber threats.

How you will do it

• Collaborate with development, security, and operations teams to integrate security best practices into every phase of the software development lifecycle.

• Design and implement automated security controls and compliance checks for cloud-based infrastructure and applications.

• Develop and maintain secure CI/CD pipelines to enable continuous delivery of software releases.

• Conduct security assessments, penetration testing, and vulnerability scanning of cloud environments to identify and remediate security risks.

• Monitor cloud infrastructure and applications for security incidents and respond to security alerts in a timely manner.

• Implement security policies, standards, and procedures for cloud-based systems in compliance with industry regulations and best practices.

• Provide technical guidance and support to internal teams on security-related issues and initiatives.

• Stay updated on emerging security threats, vulnerabilities, and best practices in cloud computing.

• Implement Patch management for various patches across software, tools etc.

What we look for

• Bachelor's degree in Computer Science, Information Security, or related field.

• 3 years of experience in DevOps, software development, or information security roles.

• Hands-on experience with cloud platforms such as AWS, Azure, or Google Cloud.

• Proficiency in scripting and automation using tools like Python, Bash, or PowerShell.

• Strong understanding of DevOps principles and practices, including CI/CD pipelines, infrastructure as code, and version control.

• Familiarity with security tools and technologies, such as IDS/IPS, SIEM, WAF, and vulnerability management.

• Excellent communication skills and the ability to collaborate effectively with cross-functional teams.

• Certifications such as AWS Certified DevOps Engineer, Azure Certified DevOps Engineer, Certification in Cybersecurity(CC) is a plus