DevOps Security Engineer-Midtown NYC
Note: This is a full-time employee role – the client is only open to US Citizens and Green Card holders and no third parties.
You will be the primary owner of technical security administration and reporting responsibilities ranging from planning, implementation, and administration of network security technology for corporate development and production infrastructure.
You will be required to implement and upgrade cloud compute instances, databases, and network infrastructure using security best practices.
You will have a lead role in security technology selection, deployment and ongoing management for mission critical production services. As a lead for security implementation and management, you will also be the technical liaison for SOC and ISO recertification with external security auditors.
Serve as a key member of the DevOps team with a focus on security while managing the overall system health, performance, and capacity of internal and client facing systems
Contribute to Continuous Integration and Continuous Deployment (CI/CD) solutions in an AWS
Contribute to automation of code delivery pipeline with the goal of one click deployments, rollbacks, and parameterized builds.
Lead projects through design, pilot, and deployment for new security solutions across a large-scale production cloud environment.
Implement, configure, and upgrade cloud computing systems, servers, firewall, intrusion-detection and network infrastructure using security best practices and incorporating solutions to meet or exceed SOC2, ISO 27001, and other regulatory requirements.
Research security trends and emerging technologies, identify our business and technical requirements, perform technical evaluation and support deployment of multi-regional security solutions.
Review implementation of security controls and evaluate effectiveness, make recommendations for improvements
Develop a strategy for dealing with increasing number of audits, compliance checks and external assessment processes for internal/external auditors, i.e. ISO 27001
Work with auditors as appropriate to keep audit focus in scope, maintain excellent relationships with audit entities and provide a consistent perspective that continually puts the institution in its best light. Provide guidance, evaluation, and advocacy on audit responses
Required Skills and Experience
5+ years Linux systems administration skills including shell scripting, database programming, network administration and managing server infrastructures
Knowledgeable in PCI, HIPAA, SOC, or ISO 27001 security compliance standards, certification, reporting and maintaining process
Well versed in internet architectures, including web, application, and database components such as Apache, IIS, Memcache, MySQL, SQL Server, etc.
Proficiency scripting in one or more programming Languages: Python, Perl, Shell Scripting, Bash
Experience with puppet or chef, CI/CD processes and secure SDLC preferred
2+ years’ experience with Amazon Web Services (AWS) or GCP platform capabilities and architectural best practices.as well as experience implementing security mechanisms and controls in a cloud environment.
Solid understanding of TCP/IP network protocols and experienced with firewalls, NAT, packet analysis and tools like Wireshark
Familiarity with security forensics and analysis of security threats and events and able to perform vulnerability scans, analyze results and assist with remediation.
Experience in an Agile/Scrum development environment.
Strong oral and written communication skills with ability to understand technology sufficiently to clearly communicate the complexity in simple terms for key stakeholders
Bachelor’s Degree in Computer Science or Electrical Engineering is required.
Master’s Degree in Computer Science or Electrical Engineering is preferred.
Click here to apply
Please mention that you saw the job on Digital DUMBO