DevSecOps Engineer

About Us:

Award - The Best FinTech Trading Platform of The Year 2019.

Zeal group of companies (collectively Zeal Group) is a business portfolio of the parent company Zeal Holdings Limited, comprising regulated financial institutions and fintech companies specializing in multi-asset liquidity solutions in regulated markets backed by proprietary technology.

We are a people focused business and our team of 500+ professionals globally are dedicated to maximizing the success of our employees and customers. Headquarter is located in the UK with global presence in 12 countries across Asia, Middle East, & Europe with 22 offices internationally.

The estimated monthly trading volume in an average of USD 100B executed by 100,000 retail investors, professional traders, and financial institution clients.

Job Description:

Principal Accountabilities

• Participation in security incident investigations
• Contribute to the management of the Security tools development direction and roadmap of security tools, investigate technologies, run proof of concepts and testing
• Performing continuous risk analysis and mitigate risks of cloud infrastructure.
• Participation in the vulnerability discovery process (scanning, analysis of discovered vulnerabilities)

• New security monitoring tools research and development
• Assess security stance of cloud and on-premise deployments. Recommend and implement mitigation measures
• Support for internal documentation (standards, manuals, descriptions, etc.)
• Collaborate with Application Architects in questions of IT security requirements and solutions
• Support DevOps by configuring automated build & deploy pipelines

• Implementing and automating security of Kubernetes cluster (prod/dev/uat environment).
• Implementing and automating security with CI/CD pipelines (SAST, DAST, OSA/SCA).
• Hardening and security enhancements within cloud infrastructure (GCP/AWS) and K8s
• Implementation of automated IT security measures (rolling secrets, analysis of security audit logs, …)
• Participation in Security team’s project activities

• Vendor assessment and comparison
• Continuous improvement of Security events monitoring
• Create best practices for DevSecOps tools in terms of their implementation across all IT functions, setup and support security quantitative KPIs in terms of DevSecOps.
• Develop in cooperation with other teams alerts, rules and monitoring automation solutions
• Deliver DevSecOps solutions

• Installation support and content development (dashboards, alerting, etc) for DevSecOps tools

Key Competencies & Qualifications

• 3+ years of relevant working experience
• Solid technical and knowledge in Information Security
• Expert in IT Security Operations processes and their tailoring towards the application domain
• In depth knowledge of Kubernetes and Helm as well as hands-on experience using them.

• Experience with AWS Cloud and GCP, especially with implementation of CSPM.
• Expert knowledge of Terraform, GitLab CI.
• Experience with SonarQube, AquaSecurity, Sonatype, Jfrog, Qualys.
• Knowledge in modern techniques for exploiting the vulnerabilities of applications,
• ITIL knowledge (change control process, change management, problem/incident management, procedures, guidelines, etc)

• Information security principles for business applications practical knowledge is a plus
• Experience and skills in Unix
• Knowledge of static and dynamic security scanning tools
• Strong knowledge in CI/CD.
• Expert knowledge in identification and evaluation of indicators of compromise (IOC) associated with malicious code and malware

• Experience with security audits
• Passion for solving challenging problems and iterating quickly
• Ability to thrive under stressful situations
• Ability to work with several tasks at the same time
• Team player with energy and a desire to progress in a fast moving, demanding and progressive environment

• English language is a must

Package:

• Bonus structure for each job role
• Paid 21 days of holidays per year and 10 additional days for national holiday
• Training opportunities for growth and expansion of knowledge
• Ability to work remotely
• Flexible and hybrid schedule – we value work-life balance
• Referral Bonus Program