DevSecOps

Responsibilities

• You are responsible for defining and implementing the build, deployment, and monitoring standards for the organization.
• You will be responsible for end-to-end automation of deployment, monitoring, and infrastructure management in a cloud environment.
• You will identify security processes and workflows to build and deploy automation, support day-to-day operations by monitoring & resolving issues and automated deployments
• You are responsible to create and manage the documentations - process and tool related • You will research, promote, and implement best practices within the organization  
• You will monitor, prevent, and resolve incidents across multiple layers of the system (Infrastructure, security, application logic)
• You will contribute to the organization’s security, backup, and redundancy strategies
• You will need to evaluate application performance, identify potential bottlenecks, develop solutions, and implement them through the development team
• You will define application vulnerability management, its tracking and reporting metrics  

Skills

• 8+ years of IT experience and 7+ years of DeVos experience
• Demonstrated experience with secure development, coding and engineering practices
• Experienced in management and definition of security in the SDLC
• Experience in conducting security checks - static and dynamic code analysis, application vulnerability analysis, penetration tests, security component analysis etc)
• Familiarity with information security frameworks / standards like CIS, NIST, RFC2196, OWASP Top 10 etc
• Understanding of virtualization & container technologies (Docker, Kubernetes, OpenShift, EKS, AKS, etc)
• Experienced in build tools like Maven, Gradle etc and package managers like npm, yarn etc
• Expertise in securing APIs / Microservices
• Experience with infrastructure as code tools like Terraform, Pulumi etc
• Expertise in fully automating end-to-end CICD pipelines, from code commit to production
• Experience with GitLab / Bitbucket / GitHub
• Expertise with systems reliability, load balancing, monitoring, and logging
• Excellent knowledge in networking technologies - OSI networks layers, TCP/IP stack etc
• Strong scripting exposure - Shell scripting (bash and/or Powershell) Python, Perl, ruby etc
• Experienced in administering & performance tuning of application stacks like Tomcat, JBoss, NGINX, Apache etc
• Strong knowledge in Linux environment
• Familiarity with GDPR standards     

Job Description

• Airline/Aviation Industry experience
• Domain experience in over-the-top media services/retail/e-commerce.
• Cloud security certification in Azure / AWS / GCP
• Experience in Chef, Puppet, Ansible etc
• Work experience in SQL and NOSQL databases  
• Cyber security tools knowledge - CheckMark/Frotify, Burp Suite, OWASP ZAP, Mend (WhiteSource), Nessus etc 

Competencies

Airline/Aviation Industry experience 

Desired Education

Any Technical Graduation
 

Desired Experience

Minimum 8 Years