Lead DevSecOps Engineer

Cultural Infusion a social enterprise is recognised internationally across the world for its innovation and vision to create a culturally harmony world.

Our recent start up is seeking a talented Lead DevSecOps Engineer to join our small team of talented engineers.

Responsibilities:

1. Providing guidance, mentoring, and support to ensure successful implementation of DevSecOps practices.
2. Drive the development and implementation of DevSecOps practices, ensuring the integration of security into all aspects of the software development lifecycle in a multi-cloud environment, with a specific focus on AWS.
3. Design, implement, and maintain secure and efficient DevSecOps pipelines and infrastructure across multiple cloud platforms, leveraging Terraform, Ansible, and Bash scripting.
4. Collaborate with development, operations, and security teams to identify and address security vulnerabilities, risks, and compliance requirements across AWS and other cloud platforms.
5. Develop and enforce security policies, standards, and procedures to ensure a secure and resilient infrastructure in a multi-cloud environment, with a focus on AWS.
6. Conduct regular security assessments, penetration testing, and code reviews to identify and remediate security vulnerabilities across AWS and other cloud platforms.
7. Implement and manage security monitoring and incident response systems using tools such as Elastic Search, Kibana, and other relevant technologies.
8. Utilize GitLab for version control, continuous integration, and continuous deployment (CI/CD) processes, ensuring security practices are integrated into the workflows.
9. Ensure the secure deployment and management of containerized applications using Kubernetes and Docker, implementing relevant security controls.
10. Stay up to date with the latest industry trends, emerging threats, and security technologies, specifically related to AWS services and cloud-native technologies.
11. Mentor and guide junior members of the DevSecOps team, fostering a culture of security awareness and continuous learning in a multi-cloud environment.

Requirements:

1. 8+ years of proven experience as a DevSecOps Engineer or a similar role, with a focus on security integration in DevSecOps processes in a multi-cloud environment, with a specific emphasis on AWS.
2. At least 2 years of team leadership experience, demonstrating the ability to lead and manage a team of DevSecOps Engineers.
3. Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
4. Strong knowledge of DevSecOps principles and practices, as well as CI/CD pipelines and tools, with experience using GitLab for version control and CI/CD, ensuring security measures are in place.
5. Experience with infrastructure-as-code tools, particularly Terraform, for provisioning and managing infrastructure securely across multiple cloud platforms, including AWS.
6. Proficiency in scripting languages such as Bash for automation and tooling development.
7. Deep understanding of containerization technologies (e.g., Docker) and container orchestration systems (e.g., Kubernetes) for deploying and securing containerized applications, implementing relevant security controls.
8. Expertise in security best practices, secure coding principles, and vulnerability assessment tools, particularly in the context of cloud environments.
9. Familiarity with monitoring and log management systems, including Elastic Search, Kibana, and related technologies, ensuring security monitoring and incident response capabilities are implemented.
10. Strong analytical and problem-solving skills, with the ability to analyze complex systems and identify security gaps in a multi-cloud environment.
11. Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.