Development Security Operations Manager (DevSecOps)

We're Growing! If you're a highly skilled DevSecOps/Product Security Engineer, this is for you.

At Clarity Sec, we're not just a global cybersecurity & incident response firm - we're a family committed to making the digital world a safer place. We believe in protecting what matters most to our clients, their digital identity, and assets, by serving as their shield against all kinds of cyber threats.

With a legacy spanning over twenty years, we've become a home for experts who've stood the test of time, always ready to go the extra mile. Our team works hand in hand with clients to spot potential weaknesses and react to problems promptly and efficiently, making the digital world a bit safer each day.

What's more? We're not just about defense; we're about innovation and growth too. We offer a diverse range of consulting services to leading organizations, helping them embrace technology and its potential securely.

What we're looking for:

We are seeking an experienced and dedicated DevSecOps/Product Security Engineer to strengthen our team. This role is vital in safeguarding our software security, focusing on the integration of secure development within a DevSecOps framework. The candidate will be responsible for implementing advanced software security measures, collaborating with various technical teams, and continuously enhancing our security protocols.

Responsibilities:

General Experience: Minimum of 7 years in a DevSecOps or Product Security Engineer role.

Software Development and DevOps: At least 3 years of hands-on experience in software development and DevOps.

Application Security: 7+ years in application security with a comprehensive understanding of OWASP Top 10 and API Top 10.

Technical Skills:

Development: Strong proficiency in programming/scripting languages like Python and Java.

CI/CD and Automation: Expertise in CI/CD pipelines (Jenkins, Terraform, Ansible) and GitOps.

Cloud Platforms: High proficiency in GCP and AWS.

Security Tools and Techniques: Hands-on experience with SAST, DAST, SCA, IAST, threat modeling, and security incident response.

Penetration Testing: Experience in conducting infrastructure and application penetration tests.

Microservices Security: Experience in securing microservices architectures.

Security Automation and Vulnerability Management: Skills in developing security automations and involvement in vulnerability management programs.

Soft Skills:

Communication and Collaboration: Excellent communication skills for effective collaboration across teams.

Problem-Solving: A proactive, learning-oriented approach to problem-solving.

Adaptability: Quick learner with the ability to prioritize and multitask efficiently.

Optional Skills:

Domain-Specific Security: Experience in domains like web application security, API security, and cloud security.

Scripting and Automation: Proficiency in Python or Bash scripting.

Security Frameworks: Familiarity with frameworks like OWASP Top 10.

Qualifications:

Education: Bachelor's degree in Software Engineering or a related field.

Experience: Minimum 7 years in a relevant role, with at least 3 years in software development and DevOps.

Job Responsibilities:

Developing and implementing secure DevOps processes.

Supporting and implementing advanced software security solutions.

Collaborating with technical teams to enhance overall software security.

Personal Skills:

Ability to work independently and as part of a team.

Strong problem-solving abilities and creative thinking.

Effective communication skills, capable of explaining complex concepts.

A strong desire for continual learning and development.