Principal DevSecOps Engineer
3d ago

What will you contribute? Finastra is looking for an experienced, highly motivated Principal DevSecOps Engineer to support our Cloud Enablement Team and become a key contributor to the security for our products in Microsoft Azure cloud.

You will be part of the Product & Data Security organization and work closely with DevOps, product engineers, architects and developers to build highly reliable and secure products.

Responsibilities & Deliverables : Your deliverables will include, but are not limited to, the following : Security event monitoring of runtime environments, e.

g. API Threat Prevention, Container Runtime Security, Azure OMS, etc. Designing a secure application-release automation process to make security an integral part of the CI / CD pipelines.

Validating adherence to Azure governance standards for policy definitions, role-based access controls, ARM Templates, resource groups and Azure Blueprints.

Identifying security tools and lead operationalization of solutions from POC to Production. Working with DevOps and engineering to implement a chaos-testing methodology and toolkit.

Integrate security tools issue tracking with Jira. Implementing automation to investigation and response workflows for Automated Incident Response.

Developing and improving Web App Firewalls (WAF). Identifying bot attacks and implementing countermeasures. Required Experience : At least 5+ years of Information Security experience, and 2+ years of direct Azure experience Working knowledge of Secure SDLC processes Expert knowledge of container security and secrets management (Docker / Kubernetes / AKS / Service Meshes / AquaSec) Strong knowledge of programming languages and ability to write PowerShell / Python scripts Working experience with configuration management (e.

g. Ansible / Puppet / Chef / DSC) Strong experience with Azure IaaS and PaaS technologies in general, e.g. Service Fabric, Application Service Environment, Azure Kubernetes Service, Azure SQL, Cosmos, Azure APIM, Azure AD, Azure OMS / Application Insights, Global Traffic Manager, Redis Cache, etc.

Strong commitment to standardization and documentation Working experience with Bot Protection and Threat Prevention solutions.

Advanced knowledge of IPv4 and micro-segmentation.

Report this job

Thank you for reporting this job!

Your feedback will help us improve the quality of our services.

My Email
By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
Application form