Staff DevSecOps Engineer - 12 Month Contract

The Staff DevSecOps Engineer will use their prior experience designing, implementing and operating public cloud based solutions within regulated banking, financial or government sectors to accelerate KUBRA’s new application development.  The focus will be on ensuring we incorporate current best practices into the ‘scaffolding’ of our Internal Developer Platform. We want to expand on and reinforce our Secure SDLC to ensure that our applications and the infrastructure backing them address various vectors of misuse or fraud including DDOS and BOT attacks. The role will include both design and implementation of solutions leveraging our established DevSecOps practices including Infrastructure as Code and GitOps. The role involves consulting with KUBRA Security Architecture, Governance Risk and Compliance and Product teams. 
This is a HYBRID position with our office located in Mississauga, ON.

What you get to do everyday!

• Design and implement security related aspects of the KUBRA cloud platform environment including firewalls and CI/CD pipelines
• Work with product engineering teams to implement fraud mitigation features into their applications and infrastructure. 
• Provide secure software development lifecycle coaching to software engineers, platform engineers, site reliability engineers and other stakeholders involved in the creation of KUBRA’s products and services.
• Provide architectural security guidance to software engineers and Platform Engineers building software applications in compliance with industry standards (PCI-DSS, NIST, CIS, OWASP) in public cloud environments
• Review and suggest enhancements for security of software supply chain
• Work with KUBRA Security team, DevOps and Platform Engineering teams to maintain vulnerability and patch management processes inline with KUBRA security policy
• Work with KUBRA Security team for incident response as necessary

What kind of person you should be!

• Experience with ‘Security as Code’ 
• Proficiency building solutions leveraging AWS public cloud technologies including AWS Network Firewall, AWS Shield Advanced, AWS WAF, AWS Guard Duty 
• Proficiency with Kubernetes particularly Amazon EKS
• Knowledge of Kubernetes Admission controllers and OPA
• Familiar with CNAPP tools like Sysdig and Wiz
• Proficiency in Infrastructure as Code (IaC) and Platform engineering technologies: Terraform, ArgoCD, Helm and Crossplane
• Proficient using Golang (Go)
• Scripting and automation skills highly preferred (APIs, Python, Bash, PowerShell)
• Practice ‘Security as Code’ to ensure baked in security and automation.
• Able to use both verbal and written communication skills to convey technical requirements
• Highly organized and responsible.
• Maintain awareness of trends and changes in the Cybersecurity industry and threat landscape.
• Ability to influence others, build relationships, manage conflicts, and handle negotiations.

What you can expect from us!

• Award-winning culture that fosters growth, diversity and inclusion for all
• Paid day off for your birthday
• Access to LinkedIn learning courses
• Bi-annual performance-based bonus
• Continued education with our education reimbursement program
• Flexible schedules
• Free unlimited access to our refreshment stations (fully stocked with tea, coffee and other beverages)
• Two paid days for volunteer opportunities
• A free premium membership for ‘Headspace’; an app geared towards mental health and wellbeing
• Access to Perkopolis retail discounts
• Generous benefit coverage with low premiums (+ a Health Care Spending Account)
• RRSP Matching

KUBRA is an equal opportunity employer dedicated to building an inclusive and diverse workforce. We will provide accommodations during the recruitment process upon request by emailing recruitment-team@kubra.com. Information received relating to accommodation will be addressed confidentially. We thank all applicants for their interest; however, only candidates under consideration will be contacted.
While we value the skills and experiences listed in our job requirements, we also recognize that talent comes in many forms, and welcome applications from candidates who meet most but not all specified requirements. If you possess a strong desire to learn and grow in a dynamic work environment, apply now!
KUBRA is a fast-growing company that delivers customer communications solutions to some of the largest utility, insurance, and government entities across North America. KUBRA offers billing and payments, mapping, mobile apps, proactive communications, and artificial intelligence solutions for customers. With more than 1.5 billion customer interactions annually, KUBRA services reach over 40% of households in the U.S. and Canada. KUBRA is an operating subsidiary of Hearst. Our office is small enough to allow creative individuals to flourish, yet large enough to provide long-term stability. We place a tremendous amount of responsibility on our team members to be productive, focused and self-motivated. We offer a casual work environment, competitive compensation and a stellar benefits program. 
KUBRA does not typically provide immigration-related assistance, including employment-based work visa (e.g. H-1B) sponsorship, work permit applications and extensions, permanent residence (green card) sponsorship, LMIA applications or permanent residency nominations. Candidates must ensure they have legal authorization to work in the U.S/ Canada. All sponsorship determinations are case by case based on business need.