DevSecOps Manager

Job Description

• Oversee development, maintenance and support of our development pipelines, which support our Continuous Integration, Automated Provisioning and Continuous Delivery capabilities across both our cloud and on-prem platforms.
• Subject Matter Expert in infrastructure, development, operations, security and quality assurance, with proven experience with DevOps and Agile practices.
• Responsible for both our DevOps and Security teams for India
• Security event monitoring of runtime environments on GCP/AWS/Azure
• Designing a secure application-release automation process to make security an integral part of the CI/CD pipelines.
• Lead a team of software and security engineers, with a high degree of freedom to design and build best-in-class offerings
• Point of contact for account teams as it relates to Cloud security, automation, CI/CD, and DevSecOps
• Provide guidance on security controls and best practices for on-premise and cloud-based solutions to Application development and infrastructure teams
• Conduct internal assessments, identify risks, define improvements and drive action plans to address key issues
• Support third-party audits for SSAE16, SOC 2, ISO 27001, HIPAA, FedRAMP, and other customer-led assessments.
• Work with stakeholders to define and drive continuous improvements in policies, procedures, and technical controls related to DevOps and Cloud security.
• Conduct security risk assessment and vulnerability assessments for identified areas and applications and guide stakeholders for remediation of identified risks and vulnerabilities.
• Provide recommendations to the security steering committee team for the resolution of alerts and incidents.
• Contribute to driving the creation and modification of work practices and SOPs.
• Identify areas for continuous improvement of DevOps and security-related processes.

Your Expertise:

• Bachelor or Masters Degree in computer science or equivalent
• 10 years of deep experience with cybersecurity architecture and engineering
• Knowledge of networking protocols and technologies and network security architecture and engineering.
• Experience with DevOps tools like New Relic, Splunk Jenkins, Bamboo, Git, Subversion, Confluence, JIRA
• Expert knowledge with integrating crucial security tasks into CI/CD pipelines
• Strong knowledge of container security and secrets management (Docker/Kubernetes/AKS/Service Meshes/AquaSec)
• Working experience with configuration management (e.g. Ansible/Puppet/Chef/DSC)
• In-depth knowledge and experience with end-point security, SIEM, DLP, IRM, vulnerability assessment and patch management solutions.
• In-depth understanding of risk and vulnerability mitigation.
• Versed in common/emerging attack vectors (such as malware, ransomware, cryptojacking, DOS, etc) and how to protect systems from these attacks.
• Knowledge of security standards and guidelines from NIST, CSA and ISO.
• Hands-on administrative experience with windows server, linux, oracle DB and SQL/Server technologies.
• Basic knowledge of ITIL methodologies
• Basic knowledge and understanding of programming languages (i.e. Java, .Net).
• Analytical and problem-solving skills.
• Ability to prioritize and multi-task to achieve competing goals and target dates.
• Excellent communication skills.
• Willingness to learn and improve.
• Nice to have skills:
• Industry certifications in DevOps and IT security
• Experience with identity and access management and privileged access management.
• Experience with Microsoft Azure, Amazon AWS and Google Cloud technologies.

Your X-Factor:

• Aptitude - You have an innate capacity to transition from project to project without skipping a beat.
• Communication - You have excellent written and verbal communication skills for coordination across projects and teams.
• Impact - You are a critical thinker with an emphasis on creativity and innovation.
• Passion - You have the drive to succeed paired with a continuous hunger to learn.
• Leadership - You are trusted, empathetic, accountable, and empower others around you.

Why We re Proud To Be Mavens!

• Google Cloud North America Services Partner of the Year 2019, 2018
• #21 Best Workplaces in Chicago, FORTUNE, 2018
• Great Place To Work Certification, Great Place to Work, 2017 & 2018
• Fast Fifty, Crains Chicago Business
• 101 Best and Brightest Companies to Work For, National Association for Business Resources (NABR)
• Top Google Cloud Partner, Clutch
• Fastest Growing Consulting Firms in North America (#11, #37), Consulting Magazine
• Top IT Services Companies, Clutch
• Google Global Rising Star Partner of the Year

Ready to Learn More

• Life of a Maven
• Check out the Apps and Data Team
• See what Glassdoor has to say
• Real Customer Stories

,

Keyskills :
microsoft azurecomputer scienceit servicesit securityproblem solvingwindows servernew reliciso 27001risk assessmentsecurity riskcloud security