Candidate is responsible for executing the strategic direction for DevOps & SecOps delivery processes. This includes defining the DevOps capability and leading DevOps transformation in the areas of Security, Continuous Integration, Continuous Delivery, Continuous Deployment, Automation, Proactive Measurement and Remediation.
DevOps & SecOps Strategy & Leadership : Execute the strategy and roadmap. Lead as the trusted advisor to the organization and guide them through the change.
Partner the organization to strengthen and evolve SecOps and DevOps principles and practices across the enterprise.Drive Continuous Improvement : Establish a culture of continuous improvement.
Drive improvement in processes that accelerate the delivery of new features. Constantly seek opportunities to streamline existing processes by introducing automation, tools, or infrastructure to scale the business.
Design and direct all aspects of Continuous Delivery and Deployment implementation. Promote securing coding practices across the organization, working closely with InfoSec team.
Problem Solving : Work across the team as a solution hunter to identify major pain points or opportunities where technology solutions or processes can drive the business and IT more effectively.
Review detailed security assessment by development team (such as reviewing SAST false positives and remediation), recommend changes to drive secure coding practicesInnovation : Innovate at all levels, identify new tools and processes to incorporate into DevSecOps Eco-system.
Work with extended team to increase adoption. Experience / Qualifications : At least 8 years of strong software engineering experience.
Experience working with InfoSec or Compliance teams; Familiarity with generally-accepted security methods, concepts, and techniques.
Working knowledge of development systems such as Git, Maven and JenkinsExperience working with one or more scanning tools in SAST, RASP, DAST, IAST, OSA space, integrated with CI / CD process.
Working knowledge of penetration testing tools and vulnerability assessment activitiesExperience working with AWS or another cloud providers.
Experience with leveraging Automated functional test (aka. UI test) in vulnerability detection and remediation.You are confident and competent.
You are diplomatic, professional and exercise great judgment in developing and maintaining excellent relationships within the organization of approximately 200 extended team members.
Proven ability to work creatively and analytically in a problem-solving environmentAbility to quickly understand new technology through instruction and self-learning What Gives You An Edge : Working experience with Java, .
NET, Salesforce Apex, Oracle e-Business Suite, Infomatica or Microstrategy2+ years of experience with SDLC and source, build / release, and configuration management in a CI / CD environment, such as GIT / Perforce, Confluence, Jenkins, Chef, Puppet, Ansible, CheckMarx, BMC ITSM Remedy, Server Automation.
Experience with one or more Containers (Docker, Kubernetes, Mesos, Twistlock, Rancher, CoreOS etc.) and micro services.Experience with Chaos Engineering and Performance TestingManaging Security in a Multi-Cloud environment.
It is the policy of BMC Software to afford equal opportunity for employment to all individuals regardless of race, color, age, national origin, physical or mental disability, history of disability, ancestry, citizenship status, political affiliation, religion, gender, transgender, gender identity, gender expression, marital status, status as a parent, sexual orientation, veteran status, genetic information or other factors prohibited by law, and to prohibit harassment or retaliation based on any of these factors.,