Dev SecOps Engineer

·        Develop, implement, and manage security solutions within our DevOps infrastructure to safeguard digital banking platforms and services.

·        Collaborate with software development, operations, and quality assurance teams to integrate security throughout the software development life cycle (SDLC).

·        Perform security code reviews and application vulnerability assessments, including static and dynamic analysis.

·        Oversee the configuration and management of security tools such as intrusion detection/prevention systems (IDPS), web application firewalls (WAF), and security information and event management (SIEM).

·        Establish and enforce security policies and procedures that comply with financial regulations such as PCI DSS, UAE IA, and any other relevant standards.

·        Maintain and enhance container security practices including image scanning and runtime protection.

·        Conduct regular security audits and risk assessments to identify potential threats and develop mitigation strategies.

·        Manage security incidents, coordinate response activities, and conduct post-mortem analysis to prevent future occurrences.

·        Create and maintain comprehensive documentation regarding DevSecOps processes, security controls, and incident response plans.

·        Train and mentor staff on security awareness, best practices, and secure coding techniques.

·        Liaise with third-party vendors and partners to ensure their compliance with our security standards.

·        Stay abreast of the latest cybersecurity trends, tools, and practices, with a focus on the financial technology (FinTech) sector.