FICO is seeking a Senior SecDevOps Engineer to plan, execute and continuously improve FICO’s cloud security posture (with emphasis on cloud IaaS).
A successful candidate shall have application / script development background, understanding of the DevOps model and its implementation and deep understanding of the cloud infrastructure and operational methodologies.
FICO leverages state-of-the-art security analytics and automation tools to detect and respond to security threats and we are constantly looking for people to help us improve.
We see Security first in DevOps and choose SecDevOps over DevSecOps.
Job Description Summary
As a part of your role, you will be responsible for the company’s Platform Security Engineering and Architecture team. Within the scope of your position, you will work with internal cyber security (engineering, risk management, etc.
and the appropriate business units, including IT, provide expert security advice and assistance in design and delivery of FICO's solutions.
You will analyze security and business requirements for customer projects and corporate environments but the primary focus will be in Cloud Infrastructure and services we provide to customers.
You be challenged to identify the best methods for detection and response and work with the teams to provide end-to-end visibility.
This is a very DevOps-like and automation focused working group where you will define solutions and delivery standards to help protect the environment.
What You’ll Contribute
This role requires the ability to design and implement Security technologies in a complex and distributed infrastructure.
Design, Implement and manage scalable security controls and automation in a DevOps environment within public clouds (AWS) across IaaS, PaaS, SaaS and container platforms.
Define the need and assess relevant security tools to address security challenges within cloud and on-premise infrastructures.
Perform security analysis, provide recommendations, consulting on securing infrastructure and implementing cloud-native security tools.
Serve as a knowledge expect to provide guidance and technical leadership to other staff members and other teams outside of Security.
Someone who can lead security initiatives towards adoption within the organization.
Keep abreast of and provide recommendations on emerging security technologies and tools.
Support out compliance and certification initiatives and participate in security audits and reviews.
Collaborate with other engineers on design, analysis, architecture, implementation, pentesting, security reviews and process enhancements.
Mentor / train growing security engineers and provide technical direction and project leadership.
Mandatory skills :
Four or more years of Designing, Engineering, and Securing complex infrastructure architectures.
Two or more years of security relevant experience with AWS and implementing best practices in regards to securing cloud infrastructure and cloud services (AWS certifications are desirable)
Experience with tools like AWS CLI and creating resources in the cloud infra using Infra as a code (Terraform is desirable)
Experience in one of the scripting or programming languages with an automation mindset : Python, Shell scripting, Poweshell scripting
Should have knowledge on CI / CD tools like Jenkins (especially pipelines creation)
Experience with source control tools like Git,Bitbucket (Bitbucket is desirable)
Experience with agile project management tools like JIRA, Confluence (JIRA is desirable)
Experience working with artifactory tools like jfrog, Nexus (jfrog is desirable)
Preferred skills :
Experience with regulated environments in regards to exceeding published controls such as PCI-DSS, CIS, NIST, and / or STIG and meeting compliance
Experience on integration with SIEM tool like Splunk Cloud
Experience working on containerized solutions with Docker, Kubernetes using ECR, ECS and EKS services in AWS
Experience working on Multi account, multi region infrastructure setup and should have experience with AWS Org, Cross account access and working with services like CloudWatch, CloudTrail, GuardDuty, Security Hub, AWS Inspector, AWS SSM and other security related services.
Our Offer to You
A culture and work environment strongly reflecting our core values : Act like an Owner, Delight Our Customers and Earn the Respect of Others.
The opportunity to make a difference by leveraging your unique strengths.
Highly competitive compensation and rewards.
Flexible work options, opportunities to give back to your community, social events with colleagues and a comprehensive benefits program inclusive of progressive parental leave.