DevSecOps Security Analyst

As a DevSecOps Analyst, your key responsibilities will be:

• Security Integration: Design integration of security practices and tools into CI/CD pipelines and across all stages of the software development lifecycle.
• Tooling and Technology: Evaluate, deploy, and maintain security tools and technologies, staying updated on the latest security trends and innovations.
• Automation: Implement and maintain diferent security testing tools and develop procedures to enhance security and reduce manual effort.
• Collaboration: Collaborate with development, operations, and security teams to ensure security best practices are followed and to educate teams on security practices.
• Policy and Compliance: In coordination with security and governance team, develop and enforce security policies and procedures.

About You:

• Experience: You have atleast 10+ years of total IT experience out of which minimum 3+ years of experience in a similar role, with a strong background in security and DevOps practices.
• Technical Skills: Proficiency in scripting languages (e.g., Python, Bash), CI/CD tools (Azure DevOps preferred), and security tools (e.g., static code analysis, dynamic analysis and vulnerability scanners). Solid background of SDLC and hands-on experience with at least one programming language (Java preferred).
• Security Knowledge: Deep understanding of security principles, practices, and tools. Experience in conducting vulnerability assessments is a plus.
• DevOps Knowledge: Familiarity with DevSecOps methodologies and tools, including containerization (e.g., Docker, Kubernetes), cloud services (e.g., Azure), and infrastructure as code (e.g., Terraform).
• Strong Analytical Skills and problem-solving skills: Strong analytical skills to interpret security logs, conduct risk assessments, and perform root cause analysis.
• Communication Skills: Strong communication skills to collaborate with various teams and to educate and train staff on security best practices.