DevSecOps Engineer

Overview

About Presight

Presight is an ADX-listed public company with Abu Dhabi based G42 as its majority shareholder and is the region’s leading big data analytics company powered by GenAI. It combines big data, analytics, and AI expertise to serve every sector, of every scale, to create business and positive societal impact. Presight excels at all-source data interpretation to support insight-driven decision-making that shapes policy and creates safer, healthier, happier, and more sustainable societies. Today, through its range of GenAI-driven products and solutions, Presight is bringing Applied AI to the private and public sector, enabling them to realize their AI strategy and ambitions faster.

Position Overview

We are seeking a detail-oriented DevSecOps Engineer who is skilled in Integrating security into CI/CD pipelines, automating security testing, and ensuring secure deployment of applications. This role involves collaboration with cross-functional teams and leveraging advanced analytics tools."

Join us at Presight, where we offer a culture of innovation, outstanding career growth opportunities, and competitive rewards. If you're eager to conquer new frontiers in AI and thrive in a dynamic environment, we welcome you to our community.

What working at Presight offers:

Culture: An open, diverse and inclusive environment with a global vision that encourages personal growth and focuses on ground-breaking, industry-first innovations.

Career: Outstanding learning, development & growth opportunities via structured training programs and innovative, high-tech projects.

Rewards: A competitive remuneration package with a host of perks including healthcare, education support, leave benefits and more.

Responsibilities

Key Responsibilities

• Embed security measures throughout the Software Development Lifecycle (SDLC).
• Integrate security into CI/CD pipelines.
• Configure, integrate, and enhance security tools: SAST, DAST, SCA, Image Scanning, IaC and etc.
• Automate security testing and monitoring.
• Ensure secure deployment of applications.
• Work closely with development and operations teams to remediate vulnerabilities and implement security best practices.
• Collaborate with international teams to maintain security standards.
• Migration Considerations:
  • Securely configure and monitor CI/CD pipelines.
  • Automate security testing and vulnerability management.
  • Ensure secure deployment of applications in the new environment.
  • Conduct regular security assessments and compliance checks.
• KPIs:
  • High rate of automated security test coverage.
  • Reduction in security vulnerabilities in deployed applications.
  • Efficient and secure deployment processes.

• Offshore and International Considerations:
  • Standardize DevSecOps practices across all locations.
  • Provide training on secure coding and deployment practices.
  • Monitor and address security issues in offshore development environments.
  • Comply with UAE IA Regulation, QHSE (Quality Health Safety and Environment), Business Continuity, Information Security, Privacy, Risk, Compliance Management, and Governance of Organizations policies, procedures, plans, and related risk assessments.

Qualifications

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or related field.

Experience: 

• 3-5 years in DevOps with a focus on security.

Skills:

• Integrating security practices into the SDLC.
• Knowledge of OWASP Top 10, CWE/SANS Top 25, DevSecOps best practices and threat modeling.
• Automating security controls and vulnerability management.
• Experience working with Version Control Platforms (GitLab, GitHub,  Azure DevOps), Jenkins, Docker, Kubernetis, Terraform, Ansible, Vault.
• Knowledge of cloud security principles, container security.
• Proficiency in Python, PowerShell, Bash for security automation.
• Experience with security assessments, incident response, and compliance checks.
• Experience in software development using Java and Python is desirable.