Work Schedule
Environmental Conditions
Job Description
Position Overview: We are looking for an experienced Senior DevOps/TechOps Engineer with a specialized focus on web security to play a key role in crafting, implementing, and maintaining our infrastructure with a strong emphasis on security standard methodologies. The ideal candidate will have a deep understanding of DevOps principles, extensive experience with cloud platforms, and a consistent track record of implementing and handling security measures in web environments.
Key Responsibilities: Collaborate with multi-functional teams to craft, implement, and maintain highly secure infrastructure solutions for web applications. Develop and implement automation tools and scripts to streamline deployment, monitoring, and management processes while adhering to security standards. Design and implement robust security measures, including access controls, encryption, firewalls, intrusion detection/prevention systems, and vulnerability management. Conduct regular security assessments and audits to identify vulnerabilities, assess risks, and implement appropriate remediation measures. Monitor system performance and security logs to proactively identify and address security threats and anomalies. Stay updated on the latest security trends, vulnerabilities, and standard methodologies, and make recommendations for continuous improvement. Collaborate with development teams to integrate security standard methodologies into the CI/CD pipeline and ensure secure coding practices are followed. Provide guidance and mentorship to junior team members, fostering a culture of security awareness.
Qualifications:
Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent work experience).
5+ years of experience in a DevOps/TechOps role, with a strong focus on web security.
In-depth knowledge of cloud platforms such as AWS, Azure, or GCP, including experience with infrastructure as code (e.g., Terraform, CloudFormation).
Proficiency in scripting and programming languages such as Python, Bash, or PowerShell.
Hands-on experience with web application security tools and technologies, including WAFs, DDoS protection, and threat intelligence platforms.
Experience with containerization and orchestration technologies such as Docker or Kubernetes.
Strong understanding of networking principles and protocols, including TCP/IP, DNS, HTTP/S, and SSL/TLS.
Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or AWS Certified Security - Specialty (preferred but not required).
Excellent problem-solving skills and the ability to work effectively in a fast-paced, collaborative environment.