DevSecOps Engineer
Tel Aviv
Gong.io
Gong captures customer interactions then delivers insights at scale, empowering teams to make decisions based on data instead of opinions.At Gong, we’re building new-generation, machine-learning based software that automates big parts of customer-facing roles by “understanding” their conversations and related work.
Our solution guides sales professionals, coaches them on how to become better, performs tasks for them, and directs them to the best actions.
As a DevSecOps engineer, you'll play a key role in securing, defining, optimizing, and building our rapidly expanding cloud, infrastructure, and internal tools, with a deep focus on security tools, methodologies, and best practices.
You will be a part of our DevOps team, adding to our cloud infrastructure expertise with special focus on security related fields, such as:
- Helping to secureour growing fleet of cloud services.
- Guiding the security and architecture of new services.
- Supporting our monitoring and alerting systems.
- Developing threat detection strategies to identify potential risks.
- Automating all aspects of security control deployment.
- Acting as focal point for security and compliance-related queries and strategies.
Basic Qualifications:
- 3+ years of DevOps, with a deep understanding of cloud security and best practices.
- Ability to identify common security risks, and to formulate and execute security strategies.
- Experience with market-leading security tools and providers Scripting & development skills, preferably in Python.
- Extensive knowledge of Internet protocols, architectures, and security design principles.
- Experience with AWS security & encryption components such as IAM Policy, KMS, GuardDuty, Cloudtrail, SSO, etc. (or equivalent).
- Hands on experience with 3rd party security solutions, such as Snyk / Wiz / Orca / AquaGood understanding of security projects that address risks, including patching, secure build, vulnerability scanning and remediation, logging and monitoring, threat management, and user awareness.
- Proven ability of gathering and maintaining evidence for security and compliance.
- Self-motivated with the drive to keep moving things forward
Preferred Qualifications:
- One or more security-related certifications, such as CISSP, CEH, CISA, CISM, SECURITY+ or similar.
- Experience in triaging security alerts and executing incident response.
- Experience with virtualization technologies, especially with AWS services .
- Strong sense of ownership, urgency, and drive
- Experience in Compliance Requirements (e.g. SOC2, ISO27001, HIPAA, PCI, etc.)
If this consideration is important to you when choosing a work place, we'd love to see you with us.
Tags: AWS CEH CISA CISM CISSP Cloud Compliance DevOps DevSecOps Encryption HIPAA IAM Incident response ISO 27001 Machine Learning Monitoring Python Scripting SOC 2 SSO Threat detection
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Security Consultant jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open PowerShell-related jobs