Sr DevSecOps Practice Engineer

At Globe, our goal is to create a wonderful world for our people, business, and nation. By uniting people of passion who believe they can make a difference, we are confident that we can achieve this goal.

Job Description

We are seeking a proactive Senior DevSecOps Practice Engineer to join our practice team.

In this role, you will support platform and project teams by embedding security into their DevOps processes, assisting in both frontend and backend development environments.

You will also be
responsible for setting up and managing in-house CI/CD pipelines using Mac Mini machines and ensuring the smooth integration of DevSecOps tools and practices across multiple teams.

Responsibilities

• DevSecOps Process Support: Act as part of the practice team, providing guidance and support to platform and project teams in their DevSecOps processes, ensuring security is embedded throughout the development lifecycle.

• Frontend and Backend Development: Collaborate with development teams to ensure security best practices are implemented in both frontend and backend systems.

• CI/CD Pipeline Setup: Set up and maintain in-house CI/CD pipelines using Mac Mini machines, tailoring the pipelines to support various development environments and ensuring seamless software delivery.

• DevSecOps Tool Integration: Work with two or more DevSecOps tools (e.g., Snyk, Aqua Security, SonarQube, etc.) to automate and streamline security processes, vulnerability management, and compliance checks within CI/CD pipelines.

• Collaboration: Partner with engineering teams to ensure the smooth integration of security practices, offering guidance on best practices for secure coding, vulnerability mitigation, and compliance.

• Automation: Develop scripts and tools to automate routine security tasks and maintain the stability of security workflows.

• Monitoring and Maintenance: Ensure continuous monitoring of security in the development pipeline and address any issues or threats that arise.

• Documentation: Maintain clear technical documentation related to security processes, tools, and best practices to assist other teams.

Required Qualifications

• Experience: 4-6 years of experience in DevSecOps, DevOps, or security engineering roles, with hands-on experience in both development and security practices.

• Technical Skills:

​○ Strong understanding of CI/CD pipeline configuration, with experience setting up pipelines using Mac Mini machines.

○ Familiarity with two or more DevSecOps tools such as Snyk, Aqua Security, SonarQube, etc.

○ Hands-on experience with automation tools like Jenkins, GitLab CI, or similar.

○ Bonus points if you have 1-2 years of experience with two or more frontend and backend development frameworks like Android, iOS, Reactjs, React Native, Angular, or NodeJS, etc.

• Programming Skills: Proficiency in scripting languages such as Python, Bash, or similar.

• Certifications (Preferred): Relevant security certifications like CompTIA Security+, CISSP, or related.

Key Competencies

• Strong problem-solving skills and attention to detail.

• Ability to collaborate effectively with cross-functional teams.

• A proactive approach to learning and adapting to new security tools and technologies.

• Excellent communication and teamwork skills

Make Your Passion Part of Your Profession. Attracting the best and brightest Talents is pivotal to our success. If you are ready to share our purpose of Creating a Globe of Good, explore opportunities with us.