Senior Secturity Engineer - DevSecOps

Job Description

As a Senior Security Operations Engineer, you will be at the forefront of securing our AWS infrastructure and applications through hands-on technical work, with a specific focus on Kubernetes-based environments. Your role will involve architecting, implementing, and managing security controls, conducting penetration tests to uncover vulnerabilities, and collaborating closely with development teams to remediate findings. This is a unique opportunity for a technically proficient individual to make a significant impact on our security posture in the cloud and Kubernetes ecosystem.

Key Responsibilities:

• Architect, implement, and manage advanced security controls in AWS, including but not limited to AWS network firewalls, DDoS protection, ELB, VPC zoning, KMS deployment, and application controls within Kubernetes environments.
• Deploy and configure security tools such as Netskope for CASB functionality, Inspector for vulnerability assessment, and GuardDuty for threat detection.
• Advanced IAM / PAM management experience and deploying RBAC strategies in cloud environment
• Conduct hands-on penetration tests and vulnerability assessments of AWS infrastructure, Kubernetes clusters (EKS), and Fargate workloads, utilizing tools and techniques to identify security weaknesses. 
• Review golden images and ensure hardening security practice (limitation of attacks surface and vulnerabilities exposure)
• Collaborate closely with development teams to prioritize and remediate security findings, integrating security into the CI/CD pipeline and application controls within Kubernetes.
• Monitor AWS environments and Kubernetes clusters for security incidents and anomalies, utilizing native AWS tools, Kubernetes auditing, and third-party solutions to detect and respond to threats.
• Automate security tasks and workflows using IAC (Terraform, Giltab), AWS Lambda, Kubernetes-native tooling, and scripting languages to improve efficiency and scalability.
• Stay up-to-date on emerging threats and security best practices, researching and implementing innovative solutions to enhance our security posture within AWS and Kubernetes.
• Mentor and provide technical guidance to junior members of the security operations team.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or related field.
• 5-7 years of hands-on experience in security operations with a strong focus on AWS, Kubernetes (EKS), and Fargate.
• Deep understanding of AWS security services and features, Kubernetes architecture, and container security principles.
• Extensive hands-on experience with security tooling such as Netskope, Inspector, GuardDuty, and Terraform.
• Proven track record of conducting penetration tests and vulnerability assessments in AWS and Kubernetes environments, utilizing tools such as Trivy, Kali Linux, Metasploit, and Burp Suite.
• Strong scripting and automation skills, with proficiency in Python, Bash, or similar languages.
• Relevant certifications such as AWS Certified Security - Specialty, Kubernetes certifications, OSCP, or CISSP are highly desirable.
• Excellent communication skills and the ability to effectively collaborate with cross-functional teams.

Recruitment process 

• HR Call
• 1st Interview with our Expert SOC Engineer
• 2nd interview with our Application Security Engineer
• Final interview with our CISO

Interested in this position? Apply without a second thought!

For us, applications are all very welcome. Our differences are our wealth: we are committed to promote and embody all shades of diversity for a more inclusive and equitable society