Senior DevSecOps / Security Engineer – Application & Cloud (Ecommerce)
Tasks
- Conduct secure code reviews
- Configure VPC network segmentation and security groups
- Drive adoption of security best practices across teams
- Enforce secure coding standards and policy checks
- Identify and remediate application vulnerabilities
- Implement AWS Secrets Manager and Parameter Store
- Implement IAM least privilege access
- Implement OAuth2 and JWT authentication patterns
- Implement encryption in transit and at rest
- Own Terraform infrastructure as code security
- Perform OWASP Top 10 remediation
- Prevent API abuse and data exfiltration
- Secure AWS workloads on EKS ECS EC2 Lambda API Gateway S3 and RDS
- Secure CI CD pipelines with SAST DAST SCA and secrets scanning
- Secure REST and GraphQL APIs
- Secure Spring Boot APIs and microservices
- Secure build and deployment pipelines
- Support detection and response improvements
- Support threat modeling for new features
- Translate security findings into prioritized engineering work
- Triage and remediate penetration test findings
- Tune WAF bot protection and rate limiting
Perks/Benefits
- 401k matching
- Disability insurance
- Gym reimbursement
- Holiday leave
- Life insurance
- Medical/Dental/Vision insurance
- Paid time off
- Supplements allowance
- Training and professional development
- Volunteer time off
Skills/Tech-stack
API Gateway | AWS | AWS Lambda | AWS Secrets | AWS Secrets Manager | AWS Systems Manager | AWS Systems Manager Parameter Store | AWS systems | Amazon EC2 | Amazon ECS | Amazon EKS | Amazon RDS | Amazon S3 | Bot Protection | CI/CD | Code review | DAST | Encryption | GraphQL | IAM | Infrastructure as Code | JSON Web Token | JWT | Java | Microservices | OAuth2 | OWASP Top | OWASP Top 10 | Parameter Store | Penetration Testing | REST API | Rate Limiting | SAST | SCA | Secrets Manager | Secrets Scanning | Secure Code | Secure Code Review | Security groups | Spring Boot | Systems Manager Parameter Store | Terraform | Threat modeling | Top 10 | VPC | WAF | “as-code”
Education
N/A
Roles
DevSecOps | DevSecOps Engineer | Engineer | Security | Security Engineer
Related jobs
-
Anti-virus | Authentication | CRM | Cloud Security | EncryptionCollaborative work environment | Training and developmentMid-level Full TimeSweden R12h ago
-
Anssi | Azure | CNAPP | CSPM | Cloud SecurityHealth insurance | Meal vouchers | Work from homeEntry-level Full TimeParis, IDF, France R15h ago
-
AWS | Ansible | Azure | Azure Sentinel | CentreonEmployee representative council | Health insurance | Meal vouchers | Profit sharing | Referral bonusSenior-level Full TimeRennes, Bretagne, France R16h ago
-
ITSO/Consultant Specialist INR 2092K-3500KAccess Control | Agile | Application Security | CD pipelines | CI PipelinesFlexible working | Professional developmentSenior-level Full TimePune, Maharashtra, India R18h ago
-
Mid-level Full TimeRemote - Singapore R18h ago
-
API | AWS | Authentication | Authorization | AzureExposure to international clients | Training and professional developmentMid-level Full TimeSwitzerland - Remote R23h ago
-
Amazon Web Services | Apache Cassandra | Apache Kafka | CI/CD | Code reviewAdoption leave | Competitive vacation and holidays | Paid parental leave | Professional development | Volunteer opportunitiesSenior-level Full TimeBucharest, Romania R23h ago
-
Software Engineer III, Cloud - CTIO (Hybrid) USD 120K-180KCloud Architecture | Decision Making | Go | High Availability | JavaAdoption leave | Employee networks | Mentorship opportunities | Paid Holidays | Paid parental leaveSenior-level Full TimeRedmond, United States R23h ago
-
Software Engineer II, Cloud - CTIO (Hybrid) USD 100K-145KCloud Architecture | Code review | Decision Making | Design review | GoEmployee networks | Office amenities | Paid adoption leave | Paid parental leave | Paid time offMid-level Full TimeRedmond, United States R23h ago
-
Sr. Engineer II, Cloud - CTIO (Hybrid) USD 160K-250KCloud Architecture | Code review | Decision Making | Design review | GoCompetitive vacation | Employee networks | Paid adoption leave | Paid parental leave | Paid time offSenior-level Full TimeRedmond, United States R23h ago
-
AWS CDK | Alloy | Amazon IAM | Amazon S3 | Amazon SQSAnnual leave | Career growth sessions | Company share scheme | Extended health dental and travel insurances | Flexible benefitsSenior-level Full TimeCluj-Napoca, Romania R23h ago
-
API Gateway | API Security | AWS | Access Control | Access ManagementAnnual leave | Career growth sessions | Company share scheme | Dental insurance | Flexible benefitsSenior-level Full TimeCluj-Napoca, Romania R23h ago
-
Concierge Security Engineer 3 AUD 93K-256KActive Directory | Antivirus | Attack Simulation | Authentication | BashComprehensive private benefits plan | Employee assistance program | Equity | Fertility support | Flexible time offMid-level Full TimeRemote - AUS - Western Australia R23h ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Cloud Security | CryptographySenior-level Full TimeUnited States - Remote R23h ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Application Firewall | Architecture Review | AuthenticationBenefits | Career growth | Remote workMid-level Full TimeUnited States - Remote R23h ago
-
Oracle Cloud Security Engineer USD 100K-150KAccess Management | Bash | CIS Benchmarks | CIS Controls | Cloud GuardMid-level Full TimeUnited States - Remote R23h ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Cloud Security | Content filters | CryptographySenior-level Full TimeUnited States - Remote R23h ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial ML | Application Security | Authorization | Cloud SecurityCareer growth | Equal opportunity employer | Remote workSenior-level Full TimeUnited States - Remote R23h ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Application Firewall | Authentication | AuthorizationMid-level Full TimeUnited States - Remote R23h ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Application Firewall | Bot Protection | CI/CDBenefits package | Career growth | Remote workMid-level Full TimeUnited States - Remote R23h ago
-
Oracle Cloud Security Engineer USD 100K-150KBash | CIS Benchmarks | Cloud Guard | Cloud infrastructure | Data SafeCareer growth | Health benefits | Remote workMid-level Full TimeUnited States - Remote R23h ago
-
Oracle Cloud Security Engineer USD 100K-150KBash | Cloud Guard | Cloud infrastructure | Data Safe | Data discoveryMid-level Full TimeUnited States - Remote R23h ago
-
Oracle Cloud Security Engineer USD 100K-150KBash | CIS Benchmarks | Cloud Guard | Cloud infrastructure | Data SafeMid-level Full TimeUnited States - Remote R23h ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Authorization | Cloud SecuritySenior-level Full TimeUnited States - Remote R23h ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Cloud Security | CryptographySenior-level Full TimeUnited States - Remote R23h ago