DevOps / Information Security Engineer

What is Findem:Findem is the only talent data platform that combines 3D data with AI. It automates and consolidates top-of-funnel activities across your entire talent ecosystem, bringing together sourcing, CRM, and analytics into one place. Only 3D data connects people and company data over time - making an individual’s entire career instantly accessible in a single click, removing the guesswork, and unlocking insights about the market and your competition no one else can. Powered by 3D data, Findem’s automated workflows across the talent lifecycle are the ultimate competitive advantage. Enabling talent teams to deliver continuous pipelines of top, diverse candidates while creating better talent experiences, Findem transforms the way companies plan, hire, and manage talent. Learn more at www.findem.ai
About the Role:We are seeking a skilled and experienced DevOps Engineer with a strong foundation in Information Security to join our growing team. In this role, your primary responsibility will be to design, implement, and maintain efficient, secure, and scalable CI/CD pipelines and infrastructure.In addition, you will take full ownership of Information Security, ensuring all aspects of the organization's security posture are proactively managed and maintained. This is a hands-on role that requires you to independently drive security initiatives, address vulnerabilities, handle client security questionnaires, and ensure compliance with security standards.

Key Responsibilities: Information Security Responsibilities (Primary)

• Take complete ownership of the organization's information security posture, including developing and enforcing security policies, standards, and procedures.
• Perform regular security risk assessments, penetration testing, and vulnerability scans to identify and address risks.
• Monitor and respond to security incidents, investigating alerts and coordinating resolution independently.
• Integrate security best practices into DevOps workflows, including CI/CD pipelines, infrastructure provisioning, and configuration management.
• Respond to and take full action on user-submitted reports, emails, and vulnerabilities.
• Manage the lifecycle of vulnerability reports from identification through to remediation, working closely with internal teams.
• Answer client security questionnaires with detailed and accurate responses aligned with company policies and standards.
• Implement and manage security tools such as firewalls, SIEM solutions, intrusion detection/prevention systems (IDS/IPS), and secret management solutions.
• Ensure compliance with security frameworks and regulations, including SOC2, ISO 27001, GDPR, and other relevant standards.
• Stay up-to-date with emerging security threats and proactively recommend countermeasures.
• Prepare and maintain security documentation, including audit reports, incident response plans, and risk assessments.

DevOps Responsibilities (Secondary)

• Design,implement, and manage CI/CD pipelines to enable fast, reliable, and secure application deployments.
• Build and maintain Infrastructure as Code (IaC) using tools like Terraform, CloudFormation, or Ansible.
• Manage and monitor containerized environments using Docker and orchestration platforms like Kubernetes.
• Architect scalable, secure, and implement cost-efficient cloud-based infrastructure in AWS.
• Collaborate with development teams to optimize and automate build, deployment, and release processes.
• Implement and manage observability tools for monitoring, logging, and alerting (e.g., Prometheus, Grafana, ELK Stack).
• Troubleshoot and resolve system performance issues and bottlenecks.
• Automate repetitive operational tasks using scripting languages like Python, Bash and other programming languages.
• Ensure the availability and reliability of systems through robust disaster recovery and failover strategies.

Key Requirements:

• Education:
• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity,or a related field. Equivalent work experience will also be considered.


• Experience:
• 5-7 years of experience in DevOps, with a proven track record of managing secure, scalable infrastructure.
• Hands-on experience with cloud environments, particularly AWS, including services like EC2, S3, IAM, and VPC.
• Strong expertise in CI/CD tools such as Jenkins, GitLab CI, or CircleCI.
• Solid experience with containerization (Docker) and orchestration (Kubernetes).
• Demonstrated ability to integrate security practices into DevOps workflows, including vulnerability scanning and compliance automation.
• Proven experience in managing information security independently, including incident response, policy development, and risk management.
• Hands-on experience with security tools like SIEM, vulnerability scanners, IDS/IPS,and endpoint protection solutions.
• Familiarity with regulatory compliance frameworks such as SOC2, ISO 27001, or GDPR.
• Proficiency in scripting and automation using Python, Bash and other programming languages.


• Certifications (Preferred):
• AWS Certified DevOps Engineer or AWS Certified Security – Specialty.
• Security certifications such as CISSP, CEH, CISM, or CompTIA Security+.


• Key Skills:
• Strong problem-solving and analytical skills, with the ability to take initiative and independently drive solutions.
• Excellent communication and collaboration skills for cross-functional work.
• Ability to prioritize tasks, work under pressure, and manage multiple responsibilities simultaneously.
• Detail-oriented and proactive in identifying and addressing security and operational challenges.


• Why Join Us?
• Lead critical initiatives in both DevOps and Information Security.
• Opportunity to work on cutting-edge technologies in a collaborative and supportive environment.
• Competitive salary and benefits with growth opportunities.
• A chance to take full ownership of security and make a tangible impact on the organization’s success.
 

Equal Opportunity As an equal opportunity employer, we do not discriminate on the basis of race, color, religion, national origin, age, sex (including pregnancy), physical or mental disability, medical condition, genetic information, gender identity or expression, sexual orientation, marital status, protected veteran status or any other legally-protected characteristic.