Manager - Security Engineer (DevSecOps) Lead
19F The Globe Tower
Globe Group
At Globe, our goal is to create a wonderful world for our people, business, and nation. By uniting people of passion who believe they can make a difference, we are confident that we can achieve this goal.
Job Description
The Security Engineer, DevSecOps Lead, is responsible for embedding security into the DevOps pipeline and integrating security practices throughout the software development lifecycle. Additionally, will design, develop, and implement CyberSecurity automation programs for ISDP. This role also involves identifying process gaps and problems and developing automated solutions to address them.The role requires a blend of deep technical expertise, strategic thinking, and strong leadership skills to safeguard the organization’s assets and data. The Security DevSecOps Lead collaborates with development, operations, and security teams to identify vulnerabilities, manage risks, and ensure compliance with industry standards and regulations.
DUTIES & RESPONSIBILITIES
Design, develop and implement initiatives for automating security infrastructure
Drive the adoption of infrastructure-as-code (IaC) tools and methodologies to automate deployment processes.
Integrate security practices and tools into the DevOps pipeline to ensure secure development processes.
Collaborate with development, operations, and security teams to identify and mitigate security risks.
Develop, implement, and maintain security policies, standards, and guidelines and ensure compliance with industry standards and regulatory requirements.
Provide security training and awareness programs for development and operations teams.
Stay current with the latest security trends, threats, and technology advancements.
Develop and maintain cloud automation and orchestration scripts related to information security platforms.
Collaborate with cross-functional teams to optimize cloud resources and improve system performance
Provide technical guidance and mentorship to security engineers and other team members.
Identify Process gap and develop tools/automation to streamline workflows and processes
Actively participate in professional development activities, conferences, and obtain relevant certifications.
Share knowledge and insights with the team, providing guidance on adopting new technologies and improving cloud engineering practices.
Work Experience
5 Years experience in IT and/or cybersecurity industry
2-3 years experience in DevSecOps or related role
Level of Knowledge
Strong understanding of security in cloud environments (AWS, Azure, GCP)
In-depth knowledge of CI/CD tools such as Jenkins, GitLab and the likes
Proficiency in programming and scripting languages (e.g., Python, Bash, Java) and Iac tools such as Terraform and Ansible
In depth knowledge in containerization and orchestration platforms like Kubernetes.
Competencies
Information Security (Core)
Critical/Analytical Thinking and Problem (Core)
Cloud and Network Technologies (Core)
Security Architecture (Core)
Dev Security Ops (Core)
DevOps (Core)
AI Security (Emerging)
Soft Skills
Excellent leadership and managerial skills, with the ability to motivate and guide a team.
Strong strategic thinking and decision-making abilities.
Proficiency in project management methodologies and tools.
Exceptional communication and stakeholder management skills.
Experience in budgeting, resource planning, and vendor management.
Strong problem-solving and analytical skills.
Ability to thrive in a fast-paced and dynamic environment.
Attention to detail and a commitment to quality.
Ability to foster collaboration in a team environment.
Hard Skills:
Proficiency in cloud services, products, and solutions.
Extensive experience in cloud-based solutions architecture and design.
Expertise in infrastructure-as-code (IaC) tools like Terraform or CloudFormation.
In-depth knowledge of DevOps practices and tools.
Hands-on experience with cloud infrastructure deployment and management.
Certification/License:
Preferably has any of the following certifications:
CCSA/CCSE, CCNA/CCNP, MCSA/MCSE, RHCT/RHCE, CEH, CISA/CISM/CISSP, GIACAWS SysOps Associate
AWS and/or GCP Professional Cloud Architect/ DevOps Engineer
Certified Kubernetes Administrator / Certified Container Security Expert
Terraform Certified Associate / Professional
KPIs
Successful execution of the organization's Security Engineering automation strategy.
Implement process enhancement through automation
Efficient resource allocation and cost optimization.
Effective team management, including mentorship and professional development.
Continuous improvement of cloud infrastructure, measured through scalability, automation, and security enhancements.
TOP 3-5 Deliverables
Develop, Design and Maintain cloud infrastructure that support ISDPs cybersecurity programs and initiatives
Lead the development of process enhancements though codes and automation
Develop and implement tools that enhances secure coding best practices
Drive the adoption of infrastructure-as-code (IaC) tools and methodologies to automate deployment processes.
Make Your Passion Part of Your Profession. Attracting the best and brightest Talents is pivotal to our success. If you are ready to share our purpose of Creating a Globe of Good, explore opportunities with us.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Ansible Automation AWS Azure Bash CCNP CEH CI/CD CISA CISM CISSP Cloud Compliance DevOps DevSecOps GCP GitLab Java Jenkins KPIs Kubernetes Python Scripting SDLC Strategy Terraform Vendor management Vulnerabilities
Perks/benefits: Career development Conferences
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.