DevSecOps Engineer - Retail Integration

Let's Write Africa's Story Together!

Old Mutual is a firm believer in the African opportunity and our diverse talent reflects this.

Job Description

As a DevSecOps Engineer, you will play a key role in the integration of security practices into our DevOps processes, ensuring the highest level of security across the software development lifecycle. This role is suited for a seasoned professional with deep expertise in DevOps, security, and automation. You will provide mentorship to team members and collaborate with various stakeholders to enhance the organization's security posture. 

Key Responsibilities: 

• Security Automation Leadership: Play s key role in the development and optimization of security automation scripts and tools within CI/CD pipelines. Champion the implementation of advanced automated security testing processes. 

• Vulnerability Management and Remediation: Oversee and manage vulnerability scanning and assessment processes, ensuring swift identification and remediation of security vulnerabilities. 

• Security Monitoring: Lead the design, implementation, and maintenance of comprehensive security monitoring solutions. 

• Incident Response: Drive incident response efforts, analyze security events, and contribute to continuous improvement of response capabilities. 

• Infrastructure as Code (IaC) Excellence: Enforce security best practices in Infrastructure as Code (IaC) scripts. Collaborate with DevOps teams to integrate advanced security measures into infrastructure provisioning. 

• Secure Configuration Management: Implement secure configuration management practices for infrastructure components. Set and monitor secure configuration baselines in collaboration with operations teams. 

• Security Governance and Compliance: Lead the establishment of security governance policies and compliance standards.  

• Collaboration and Mentorship: Collaborate with cross-functional teams, providing guidance on security practices in DevOps processes. Mentor and coach junior and intermediate DevSecOps engineers. 

Qualifications: 

• Bachelor's degree in Computer Science, Information Security, or a related field. 

• 8+ years of experience in DevOps, security, or a related role. 

• Proven track record of leading DevSecOps initiatives and implementing security in complex environments. 

• Expert proficiency in scripting languages (e.g., Python, Bash) and advanced security automation tools. 

• In-depth knowledge of containerization and orchestration (e.g., Docker, Kubernetes). 

• Extensive experience with cloud platforms (e.g., AWS, Azure, Google Cloud). 

• Strong understanding of cybersecurity principles and practices. 

Preferred Skills: 

• Certification in DevSecOps or relevant advanced security certifications. 

• Experience with advanced CI/CD pipelines, infrastructure as code, and version control systems (e.g., Git). 

• Deep expertise in container security best practices. 

• Familiarity with security scanning tools and vulnerability management platforms. 

• Advanced skills in incident response and security incident analysis. 

Skills

Action Planning, Application Development, Data Compilation, Data Management, Evaluating Information, Executing Plans, Information Technology (IT) Support, IT Network Security, Market Analysis, Product Development, Test Case Management

Competencies

Business Insight

Courage

Cultivates Innovation

Customer Focus

Decision Quality

Drives Results

Ensures Accountability

Manages Ambiguity

Education

NQF Level 7 - Degree, Advance Diploma or Postgraduate Certificate or equivalent

Closing Date

30 April 2025 , 23:59

The appointment will be made from the designated group in line with the Employment Equity Plan of Old Mutual South Africa and the specific business unit in question.

The Old Mutual Story!