DevSecOps Engineer - JB 298

Our mission is to help businesses grow by securing and leveraging modern technology to create a trusted digital future for our customers. As cyber threats continue to evolve, we're committed to being at the forefront of application security innovation and digital protection.

We are looking for a driven and talented individual to join our team and work as a DevSecops engineer. You will be the professional responsible for designing, conducting proof of concepts and implementation of Application security for apps both on-premise and cloud.

WHAT AM I GOING TO DO?

• Lead the design and implementation of Secure Software Development Lifecycle (SSDLC) and Secure Architecture for both cloud-based and on-premises applications.
• Collaborate closely with software development teams to integrate security best practices throughout the development lifecycle.
• Lead high-impact security initiatives including threat modelling and risk assessments that directly influence business outcomes
• Drive secure-by-design principles across development teams, fostering a culture of security excellence from inception to deployment.
• Conduct interactive workshops and training sessions to elevate development teams' AppSec capabilities and embed security best practices into their SDLC.
• Engage with internal and external stakeholders to align security solutions with business and regulatory requirements.
• Pioneer the adoption of emerging security technologies and methodologies to enhance security measures.

Requirements

• 4+ years of experience in application security roles, preferably within large, matrixed organizations.
• 2-3 years' experience in designing IT architecture
• Familiarity with application security concepts such as ASPM, SAST, DAST, SCA etc.
• Familiarity with security models and frameworks, including OWASP Top 10, Cyber Kill Chain, and the MITRE ATT&CK Framework.
• Strong understanding of cybersecurity principles, including SSDLC, cloud security, and risk assessment methodologies.
• Familiarity with various programming languages and frameworks.
• Experience with cloud security platforms such as AWS and Azure, as well as DevSecOps practices.
• Excellent communication, leadership, and project management skills.
• Ability to thrive in a dynamic, fast-paced environment and manage multiple priorities effectively.
• Proficiency in penetration testing tools and techniques - Advantage
• Level 3 civilian Security Clearance - Advantage