DevSecOps

• 7+ years of experience

Deep understanding of "security by design" and "privacy by design" concepts, able to articulate secure architectural options to technical and non-technical stakeholders and provide recommendations
Experience with continuous integration, continuous delivery, test development, release management and related CI/CD and DevOps tooling (Jenkins, GitLab, etc.)
Demonstrable skills in two or more programming/scripting languages (Java, Python, JavaScript, etc.)
Solid experience and proficiency in infrastructure-as-code and CI/CD pipeline tooling (Terraform, Gitlab)
Strong planning, strategic thinking, and prioritization skills
Cloud security related certification (preferably AWS Certified Security)
Microsoft Certified Azure Security Engineer Associate or equivalent accreditation is a plus
Practical experience of at least one common Enterprise Agile Framework e.g., Kanban, SCRUM, etc or with ITSM/ITIL
Hashicorp Certified Terraform Associate or equivalent accreditation is a plus

• CI/CD Pipeline and DevOps tooling (Jenkins, GitLab, etc.)
  Programming Languages: Java, Python, JavaScript, etc.
  Cloud Security

DevSecOps

Provide subject matter expertise for AWS infrastructure and application security design and implementation.
Implement security controls and design requirements during the software development process and change management lifecycle.
Demonstrate exceptional proficiency in identifying systems vulnerabilities and providing actionable remediation suggestions
Define best in class authentication and authorization methods and access controls
Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
Conduct or facilitate threat modelling of services and applications that tie to the risk and data associated with the service or application.
Design technical solutions to address security weaknesses, and work with relevant stakeholders to implement them.


Innovate

Research advanced approaches regarding application security best practices in the field to determine trends that may impact the operations and address services optimization and continuous improvement opportunities
Stay on the leading edge of IT security, vulnerability practices and remain current on new technologies and available vendor packages


Standardize & collaborate

Provide guidance and expertise to ensure that IT security measures are effectively integrated into all aspects of the organization's IT landscape
Participate in application and infrastructure projects to provide security-planning advice

Work Setup: 

Shift: Night Shift

Setup: Hybrid

Location: BGC, Taguig Metro Manila, Philippines

By applying, you give consent to collect, store, and/or process personal and/or sensitive information for the purpose of recruitment and employment may it be internal to Cobden & Carter International and/or its clients.