Remote Staff DevSecOps Engineer (Fluent English Required)

As a DevSecOps Engineer at IQVIA, you will play a crucial role in integrating security practices into our DevOps processes. You will be responsible for designing, implementing, and maintaining secure cloud environments in Azure and AWS. Your expertise will help us ensure that our systems are scalable, functional, and secure.

Key Responsibilities:

• Collaborate with software engineers to identify and implement security measures throughout the development lifecycle.
• Design, test, and implement secure software development practices and standards.
• Automate security controls, data protection, and vulnerability management systems in deployment pipelines.
• Continuously monitor the security of applications and infrastructure to identify potential vulnerabilities and coordinate remediation efforts.
• Develop or implement open-source/third-party tools to assist in the detection, prevention, and analysis of security threats.
• Participate in incident response and forensic analysis of cybersecurity events.
• Conduct regular security assessments, audits, and compliance checks to ensure adherence to security standards.
• Provide training and awareness to development and operations teams on secure coding practices and threat mitigation.
• Document and communicate security procedures, policies, and how they align with the company’s business processes.
• Stay abreast of new security technologies and integrate them into the security architecture design where applicable.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• 8 years of experience in Automation and DevOps, with a strong focus on cloud security in Azure and AWS.
• 5 Years experience in a related security field of engineering
• Proficiency in scripting languages such as Python, Bash, or PowerShell.
• Experience with CI/CD tools like Jenkins, GitLab, or Azure DevOps.
• Strong understanding of build processes and code repository best practices.
• Strong understanding of security best practices and frameworks (e.g., NIST, ISO 27001).
• Experience with containerization and orchestration tools like Docker and Kubernetes.
• Excellent problem-solving skills and attention to detail.
• Strong communication and collaboration skills, including fluent English.

Preferred Qualifications:

• Relevant certifications such as AWS Certified Security – Specialty, Microsoft Certified: Azure Security Engineer Associate, or Certified Information Systems Security Professional (CISSP).
• Experience with infrastructure as code (IaC) tools like Terraform or CloudFormation.
• Knowledge of network security, firewalls, and VPNs.

Bonus points for:

• Defect Dojo Experience
• Security Pipeline Container Automation Scanning
• ZA Proxy ZAP
• PRISMA Cloud.

IQVIA is a leading global provider of clinical research services, commercial insights and healthcare intelligence to the life sciences and healthcare industries. We create intelligent connections to accelerate the development and commercialization of innovative medical treatments to help improve patient outcomes and population health worldwide. Learn more at https://jobs.iqvia.com