DevSecOps Engineer II

Job Summary:

We are seeking a highly experienced DevSecOps Engineer to join our team. The ideal candidate will bring over 8years of experience in the IT domain, including at least 3 years of hands-on work in DevOps and security-integrated CI/CD environments. This role requires a deep understanding of the Software Development Life Cycle (SDLC), DevSecOps best practices, and hands-on knowledge of at least one core tool in the DevSecOps ecosystem. This role is critical to ensuring secure, efficient, and automated software delivery within our technology ecosystem.

Key Responsibilities:

• Work closely with development, security, and operations teams to ensure secure code deployment.
• Integrate security practices within the SDLC across development, build, test, release, and deployment stages. 
• Automate and monitor security controls and compliance requirements.
• Implement and maintain tools for code analysis, vulnerability scanning, secrets management, and compliance.
• Maintain and enhance monitoring, logging, and alerting systems with a focus on security.
• Provide guidance and establish standards for secure SDLC and DevSecOps practices.
• Drive the implementation of disaster recovery (DR) strategies, including backup, recovery testing, and high-availability configurations. 
• Maintain and improve infrastructure resilience, ensuring systems can be restored quickly and securely in the event of failure. 
• Work with stakeholders to ensure DR plans are tested, documented, and meet business RTO/RPO requirements.
• Maintain documentation and ensure knowledge sharing across teams.

Required Skills and Qualifications:

• 8+ years of experience in the IT industry, with a focus on systems engineering, development, or infrastructure. 
• 3+ years of hands-on experience in DevOps or DevSecOps roles. 
• Deep understanding of CI/CD concepts and modern software delivery practices. 
• Strong understanding of SDLC processes and secure development practices. 
• Experience with one or more DevSecOps tools, such as:
• Artifact management Tool: Jfrog Artifactory
• SAST Tool(s): SonarQube, Checkmarx, Fortify
• Container Security: Aqua, Twistlock
• CI/CD tools: Azure DevOps
• SCA Tool(s): NexusIQ, Verracode
• Good scripting and automation skills (Bash, PowerShell, etc.).
• Experience with disaster recovery planning and execution in cloud and hybrid environments. 
• Familiarity with cloud platforms (Azure preferred).
• Strong communication and collaboration skills.
• Problem-solving mindset with attention to detail.
• Ability to work in a fast-paced, agile environment.

About Swiss Re

Swiss Re is one of the world’s leading providers of reinsurance, insurance and other forms of insurance-based risk transfer, working to make the world more resilient. We anticipate and manage a wide variety of risks, from natural catastrophes and climate change to cybercrime. We cover both Property & Casualty and Life & Health. Combining experience with creative thinking and cutting-edge expertise, we create new opportunities and solutions for our clients. This is possible thanks to the collaboration of more than 14,000 employees across the world.

Our success depends on our ability to build an inclusive culture encouraging fresh perspectives and innovative thinking. We embrace a workplace where everyone has equal opportunities to thrive and develop professionally regardless of their age, gender, race, ethnicity, gender identity and/or expression, sexual orientation, physical or mental ability, skillset, thought or other characteristics. In our inclusive and flexible environment everyone can bring their authentic selves to work and their passion for sustainability.

If you are an experienced professional returning to the workforce after a career break, we encourage you to apply for open positions that match your skills and experience.