Accessibility Links

DevSecOps Engineer

  • Location: New York/New Jersey
  • Salary: $170,000 + Bonus
  • Job type: Permanent
  • Job reference: NFM/1214
  • Sector: Banking, Asset Management/Funds , Other Financial Services , Commerce and Industry , Information Security
Job Description

What You Will Do

As a DevSecOps engineer, you will provide leadership in the DevSecOps areas of Vulnerability Scanning, Certificate Management, Password Policy Management, Data Analysis of security monitoring outputs, coordination of Remediation Patching, and other daily Security and Compliance efforts. Additionally, you will assist in developing an automated security framework for robust deployment tools and processes, leveraging various scripting languages and open source solutions.

What You Will Bring

  • DevOps Automation: Puppet, Ansible, GitHub
  • CISM, CISSP or other Security Certifications.
  • Familiarity with API Security, Container Security, AWS Cloud Security
  • Knowledge of PCI-DSS, HIPPA, SOX, GDPR, and CCPA Standards and Policies and the associated certification and audit processes
  • Auditing and Compliance Certifications such as CISA, PCI-ISA, and PCIP.
  • Familiarity with Amazon AWS Policy, Configuration, and Security Management tools.
  • Experience with security automation and machine learning.

 Required

  • Bachelor's Degree in Computer Science or related field.
  •  Prior experience (3-5 years) in a Production Engineering or related position.
  • Experience working with Developers, DevOps, and Engineering teams in a dynamic environment to promote/implement the DevSecOps program throughout the organization.
  • Experience coordinating and performing vulnerability assessments through the use of automated and manual tools (Tenable, NMAP, etc).
  • Ability to review and analyze vulnerability data to identify security risks to the organization's network, infrastructure, and application's and determine any reported vulnerabilities that are false positives.
  • Capability to prepare security vulnerability and risk management reports for management.
  • Leadership and Teaming skills to coordinate remediation of vulnerabilities within established timeframes.
  • Proficiency in C/C++ Programming and Bash, Python or other scripting languages.
  • Familiarity with Information Security frameworks/standards (i.e. CIS, NIST, RFC2196, etc).
  • Comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc.
  • Experience configuring, implementing and leveraging computer security and networking diagnostic/monitoring tools.
  • Knowledge of Windows and Linux patch management and related information security functions (authentication, encryption, iptables, SSL, Ciphers, etc)
  • Ability to work with APIs and Plugins to integrate security tools into established CI/CD pipelines.
Similar jobs
Senior Security Engineer
  • Location New York, NY
  • Salary $185,000+
  • Job type Permanent
  • Sector Cyber Security, Information Security
  • Description Job Overview:   Barclay Simpson is partnered with a leading proprietary trading firm who is looking to bring on a Senior Security Engineer. The ideal candidate will have significant
Cyber Security Engineer
  • Location New York, NY
  • Salary $150,000+
  • Job type Permanent
  • Sector Banking, Asset Management/Funds , Other Financial Services , Information Security
  • Description Job Overview: Barclay Simpson is partnered with a global technology company who is looking for a Cyber Security Engineer to be the primary technologist for both on-prem and cloud cyber security
IT Security Engineer
  • Location New York, NY
  • Salary Competitive Rates
  • Job type Contract/Temp
  • Sector Cyber Security, Information Security
  • Description Job Description Summary: Barclay Simpson’s Cyber Security recruitment team is currently partnered with a leading global investment bank to bring on an IT Security Engineer for their
Related news