DevSecOps Architect
Mexico City, Mexico
Balsam Brands
Company Description
Balsam Brands is a global, eCommerce retailer with roots in seasonal, Christmas, and home décor. We are thrilled to extend our reach into Mexico City, bringing the magic of the holidays to a vibrant new location. Your role will be pivotal in shaping the future and trajectory of our company right here in Mexico City!
Why Balsam Brands? At Balsam Brands, we're not just a company. Our people-first approach means that you're not just an employee; you're a valued member of a community that values relationship building, authenticity, and doing the right thing. We've been sharing joy across the globe, with growing teams in Boise, ID, Redwood City, CA, Dublin, IE, and Manila, PH. Now, we're excited to welcome talent from the heart of Mexico City, MX!
Our Mission: Create Joy Together. Join us in empowering our team and partners to love what they do. At Balsam Brands, we're about more than just the products we sell; we're about creating experiences that inspire meaningful moments with family and friends. Your work will contribute to our larger mission of giving back to our families and communities in impactful ways.
When you join Balsam Brands in Mexico City, you're not just joining a company; you're joining a culture of caring and interesting people doing challenging work to grow together to delight our customers. Together, we're building a workplace where everyone feels welcome, supported, and encouraged to bring their best selves to work every day.
Ready to be a part of the joy? Explore more about the DevSecOps Architect role below and apply today!
Job Description
As a DevSecOps Architect, you will be responsible for designing, implementing, and managing the security aspects of the DevOps pipeline. You will collaborate with development, and compliance teams to ensure that security is prioritized and integrated into every phase of the software development lifecycle. This role is responsible to develop and implement a comprehensive DevSecOps strategy aligned with the organization's goals and compliance requirements working to establish security best practices and integrate them into the development and deployment process. This role is pivotal in enhancing the security posture of all applications, with a focus on implementing and maintaining security principles and best practices. You will be responsible for overseeing vulnerability scanning, analyzing web traffic, and implementing measures to identify and mitigate potential security risks.
This full-time position reports to the Director of Strategy & Architecture and will work remote in Mexico City. To ensure sufficient overlap with functional and cross-functional team members globally, some flexibility with this role's regular work schedule will be required. Most of our teams have overlap with early morning and/or early evening PST. Specific scheduling needs for this role will be discussed in the initial interview.
What you’ll do:
- Analyzing, developing, and recommending improvement of software security infrastructures and standards
- Identifies and corrects data security issues and with appropriate actions in a multiple computing platform environment
- Deliver and promote secure coding techniques, assessing vulnerabilities, providing remediation guidance
- Ensure compliance with PCI-DSS, HITRUST, NIST, SOC and other related requirements of regulation
- Provides security guidance on infrastructural designs and organizes numerous risk assessments to identify and eliminate application/product threats
- Automate software maintenance of applications like Jenkins, SonarQube, etc. which are part of CI/CD pipeline
- Maintain, optimize, and improve security of applications deployed on AWS and Azure
- Develop and maintain incident response plans and participate in security incident response activities
- Collaborate with incident response teams to investigate and resolve security incidents
- Coordinate and communicate actively risks, priorities, and assignment of tasks for timely completion of deliverables
- Partner with software engineers and QA team to automate and streamline our operations and processes
- Evaluate, select, and implement security tools and technologies that align with the organization's security goals
- Manage and optimize security tools to ensure efficiency and effectiveness
What you bring to the table:
- Must be fluent in English, both written and verbal
- Minimum of seven (7+) years relevant experience in designing and building frameworks and tools
- In-depth knowledge of security principles, practices, and technologies
- Familiarity with industry security standards and frameworks (e.g., ISO 27001, NIST, OWASP)
- Knowledge of IP networking, VPN's, DNS, load balancing and firewall
- Proven experience as an AWS Architect with expertise in Terraform, Kubernetes, Containers and serverless
- Strong understanding of cloud computing concepts and AWS services
- Certification(s) such as AWS Certified Solutions Architect, Certified Information Systems Security Professional (CISSP) and/or Certified DevOps Engineer preferred
- Strong presentation, verbal, and written communications skills
- Must have experience in systems automation, orchestration, deployment, and implementation, as well as have skills in scaling distributed data systems
- Experience architecting cloud native CI/CD workflows with tools like as Jenkins, Bamboo, Bitbucket, GitHub, Code Deploy (AWS) etc.
- High standards for documentation, unit testing, code reviews, continuous integration & deployment
- Strong problem-solving skills: adaptable, enthusiastic, and willing to take ownership
- Ability to work with offshore teams & development partners is a must have
Notes: This is a full-time, permanent position with benefits. Velocity Global is the Employer of Record for Balsam Brands' Mexico City location, and you will be employed and provided benefits under their payroll. Balsam Brands has partnered with Velocity Global to act as your Employer of Record to ensure your employment will comply with all local laws and regulations and you will receive an exceptional employment experience.
- Check out our flagship brand, Balsam Hill: www.balsamhill.com
- Balsam Brands in Forbes: https://bit.ly/balsambrandsforbes2023
- LinkedIn: http://www.linkedin.com/company/balsam-brands/
- Glassdoor: https://bit.ly/balsambrands-glassdoor
Additional Information
All your information will be kept confidential according to EEO guidelines.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Azure Bitbucket CI/CD CISSP Cloud Compliance DevOps DevSecOps DNS E-commerce Ecommerce Firewalls GitHub HITRUST Incident response ISO 27001 Kubernetes NIST OWASP Risk assessment SDLC SOC SonarQube Strategy Terraform VPN Vulnerabilities
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs