Our client is a SaaS (Software as a Service) company based in Cape Town, South Africa. They are primarily focused in the Mobile & Telecommunications sector. They are looking for a DevSecOps Engineer to join their team as soon as possible.<\/p>\n
<\/p>\n
<\/p>\n
<\/p>\n
<\/p>\n
Job Title: DevSecOps Engineer<\/strong> Job Summary:<\/strong> Duties & Responsibilities:<\/strong> Desired Experience & Qualification:<\/strong> Experience and Skills Required:<\/strong>
\nLocation: <\/strong>Cape Town<\/p>\n
\nTo provide leadership in the DevSecOps areas of Vulnerability Scanning, Certificate Management, Password Policy Management, Data Analysis of security monitoring outputs, coordination of Remediation Patching, and other daily Security and Compliance efforts. Additionally, we need this role to assist in developing an automated security framework for robust deployment tools and processes, leveraging various scripting languages and open-source solutions. You will be taking over all responsibility for reviewing, monitoring, and improving our software and infrastructure from an automation and security perspective.<\/p>\n
\nMain Duties & Responsibilities:<\/strong>
\n\u2022 Daily focus on improving our security and working to resolve any issues highlighted by external partners in delivery or support of software we supply.
\n\u2022 Daily management, optimisation and troubleshooting of security in our CICD pipelines.
\n\u2022 Improve and manage security in our Kubernetes environment.
\n\u2022 Assist with any Kubernetes requirements where possible.
\n\u2022 Support of stakeholders and business with any other security requirements.
\n\u2022 Work with the DevOps team to architect, deploy, manage, optimise, secure and monitor all the company’s infrastructure and software.
\n\u2022 Assist the software engineers with their software security and CICD pipelines.<\/p>\n
\nEducational Requirements:<\/strong>
\n\u2022 Grade 12
\n\u2022 Relevant tertiary qualification (not a must)<\/p>\n
\n\u2022 Prior experience (3-5 years) in a Software Engineering or related position.
\n\u2022 Cross functional programming languages such as: PHP (Laravel), Java, Bash, Python, NodeJS, Go, etc.
\n\u2022 Security Tools: Tenable, NMAP, SonarQube, Nessus etc.
\n\u2022 Comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc.
\n\u2022 Experience configuring, implementing and leveraging computer security and networking diagnostic\/monitoring tools.
\n\u2022 Deep and broad understanding of Amazon Web Services.
\n\u2022 Knowledge of PCI-DSS, HIPPA, SOX, GDPR, and CCPA Standards and Policies and the associated certification and audit processes.
\n\u2022 Ability to review and analyses vulnerability data to identify security risks to the organization\u2019s network, infrastructure, and applications and determine any reported vulnerabilities that are false positives.
\n\u2022 Familiar with full software stack, mostly open source, including but not limited to: Kubernetes, Docker, Nginx, RabbitMQ, Kafka, HAProxy, Redis, Memcached, Varnish, Elasticsearch, MySQL, Redshift, Athena and Linux etc.
\n\u2022 Familiarity with API Security, Container Security, AWS Cloud Security.
\n\u2022 Networking: Firewall\/Iptables\/pfSense\/Networking\/VPC\/VPN.
\n\u2022 DevOps Automation: Terraform, Ansible, Chef Git(GitLab), Jenkins. And ability to work with API\u2019s and plugins to integrate security tools into established CI\/CD pipelines.
\n\u2022 Device testing automation: Appium, robot framework, etc.
\n\u2022 Leadership and Teaming skills to coordinate remediation of vulnerabilities within established timeframes.<\/p>\n