DEVSECOPS_VIS

Job Title: DEVSECOPS_VIS

Location: On-Site, India

Role Responsibilities
• Collaborate with development and operations teams to integrate security practices into the CI/CD pipeline.
• Design and implement security frameworks and policies to enhance the security posture of applications.
• Conduct regular security assessments, audits, and vulnerability management.
• Monitor system activity and event logs for unusual behavior or threats.
• Automate security testing and integrate it into the software development lifecycle.
• Identify and remediate security vulnerabilities in software and infrastructure.
• Provide guidance on secure coding practices and application security standards.
• Develop and maintain documentation on security practices and incident response procedures.
• Collaborate with compliance teams to ensure adherence to industry regulations.
• Participate in incident response planning and execution in case of security incidents.
• Train development and operations staff on security best practices.
• Evaluate and recommend security tools and technologies.
• Stay updated on emerging security threats and trends in the DevOps space.
• Assist in disaster recovery and business continuity planning.
• Engage in continuous improvement processes focusing on security enhancements.

Qualifications
• Bachelor's degree in Computer Science, Information Technology, or a related field.
• 7+ years of experience in DevSecOps or related fields.
• Strong understanding of cloud computing and security frameworks.
• Hands-on experience with CI/CD tools such as Jenkins, GitLab, or CircleCI.
• Experience with containerization tools like Docker or Kubernetes.
• Familiarity with Infrastructure as Code (IaC) using Terraform or similar tools.
• Proficiency in scripting languages (Python, Bash, etc.) for automation tasks.
• Knowledge of security compliance standards such as ISO 27001, NIST, or PCI DSS.
• Strong problem-solving skills and attention to detail.
• Excellent communication and collaboration skills.
• Ability to work independently and in a team-oriented environment.
• Certifications in security (CISSP, CISM, etc.) are a plus.
• Experience with threat modeling and risk assessment methodologies.
• Awareness of identity and access management practices.
• Strong analytical abilities to assess security risks and provide solutions.

Skills: bash,compliance regulations,incident response,nist,threat modeling,python,circleci,cd,jenkins,scripting languages,docker,automation tools,security testing automation,terraform,cloud security,risk assessment,identity and access management,kubernetes,pci dss,vulnerability assessment,ci,secure coding practices,devops practices,cloud computing,gitlab,ci/cd,iso 27001,containerization,azure,devsecops,infrastructure as code (iac),security frameworks,security assessments,vulnerability management Read more