Security DevOps Engineer
At Evolve today we offer complex Human Resources services, from business consulting to headhunting and recruitment. We have extensive experience in finding talented professionals, for a variety of industries, especially in the IT sector.
We started with a dream: to create a Human Resources company with a strong, unique profile on the market, deeply shaped by our core values: commitment to performance, professionalism, a balanced approach and deep satisfaction for our clients.
From that moment, we nurtured special relationships and we continuously evolved, being flexible, but staying true to our values. We aim higher and higher and we invite you to EVOLVE with us!
For our business partner, a company offering some of the best customized professional consultancy services, specialized in information security as well as project and strategy management, we are looking for a Security DevOps Engineer.
You will be part of a team delivering feasible innovative solutions and that is focused on addressing the identified problems for customers from different activity domains, making a real difference for their secure operations.
You will be helping organizations take on modern security challenges as they shift security to the left in DevOps by implementing industry leading practices and capabilities.
What you can bring to the job:
Expertise in cloud and virtualization platforms;
Infrastructure automation knowledge (Ansible/Chef/Puppet, Terraform, Docker etc);
Application hosting knowledge (Docker Swarm/Kubernetes/OpenShit etc.)
Experience in design and architecting enterprise and/or web-scale hosting platforms;
Assessment capabilities in either of the following: Vulnerability Management, PCI DSS, SOC2 & ISO Assessments;
General knowledge of infrastructure concepts (mainly networking and servers);
Good understanding of server services (web servers, databases etc.);
Integration of Security testing tools into CI/CD pipeline;
2+ years of experience in agile development or DevOps role;
Experience with any "mainstream" programming language (.NET, Java, Python, etc.) is a plus;
Experience in using application security testing tools (SAST, DAST, IAST, OSA, or similar) would be considered a major plus;
Very good English language skills.
If you have:
Passion for Tech;
Good communication skills;
Analytic thinking and high attention to details;
Pleasure to work with a team;
Good organization skills;
Passion to constantly learn.
... then you should be part of the team.
Assisting clients on DevSecOps Methodology, infrastructure, people, process and governance;
Work together with key stakeholders in order to clarify technical requirements;
Clarify certain DevOps and Security issues by actively participating in technical meetings;
Install, configure and manage various security applications, developed by various 3rd party companies;
Implement DevOps specific processes (CI/CD);
Participate in uncovering main security vulnerabilities by testing the applications;
Assess infrastructure vulnerability as required by different projects;
Provide assistance to our customers related to the software implementation life cycle;
Writing and reviewing various technical and security documents;
Generate reports based on the agreed needs of the client's management team;
Support handover to colleagues from the Client's software development team.
What's in it for you:
Individual career path - personal training and personal certification plan paid by the company and great source of technical articles and support information;
Health insurance policy with wide coverage in terms of medical clinics;
Psychological counseling sessions through the company collaboration with a psychological office in Bucharest;
Virtual library of soft skills training in several areas;
Remote work, but with the possibility to go to the office (One Park Cotroceni Offices);
Strong company culture and a great team of skilled colleagues; strong team spirit with multiple initiatives involved.