DevOps Engineer

Responsibilities :

- Integrate Security : Embed security testing, reviews, and best practices into all phases of the development lifecycle

- Automate Security Processes : Design, implement, and maintain security automation tools (e.g., SAST, DAST, SCA, secrets scanning) within the CI/CD pipelines to detect vulnerabilities early and efficiently.

- Conduct Assessments and Testing : Perform regular vulnerability assessments, threat modelling ,and penetration testing on applications and infrastructure to identify and mitigate risks.

- Manage Infrastructure as Code (IaC) Security : Ensure secure configuration and management of cloud and on-premise infrastructure using IaC tools like Terraform or CloudFormation.

- Monitor and Respond to Incidents : Set up and manage security monitoring and observability solutions (e.g., SIEM, ELK stack, and Grafana) to detect and respond to security incidents in real-time.

- Ensure Compliance : Work with compliance teams to implement and enforce security policies and regulatory standards (e.g., GDPR, HIPAA, PCI DSS, and SOC 2).

- Collaborate and Educate : Foster a security-aware culture by collaborating with cross-functional teams and providing guidance and training on secure coding practices and emerging threats.