!
Oops. This position is on hold.
Senior DevSecOps Engineer
Job Title:
Senior DevSecOps Engineer
Job Description:
As a Senior DevSecOps Engineer you will be working on the security strategy governing the application and cloud-based platform infrastructure.
You will work with other infrastructure, DevOps and application engineers to
- understand product and business needs
- provide expertise around application and cloud service development
- define and own clear guardrails, alerts, and Security as Code (SaC) deployments to provide 24/7 protection from malicious traffic, vulnerabilities and other attack vectors
Experience Range:
4 - 15 years
Educational Qualifications:
-B.Tech/B.E in Computers
Job Responsibilities:
- Review and analyze vulnerability data to identify security risks to the organization's network, infrastructure, and application's and determine any reported vulnerabilities that are false positives.
- Build and maintain a multi-cloud infrastructure architecture aligning security, compliance, performance and resilience
- Provide expertise and best practices for implementing cloud security (internal) and product security (external)
- Assess architectures and designs for security vulnerabilities and suggest and implement proper alternatives
- Oversee the management and remediation of identified security flaws within our development platforms
- Build and maintain monitoring, auditing, and reporting frameworks that produces artifacts that support security and compliance needs
- Develop processes that produce artifacts that support security and compliance requirements
- Automate and codify supporting security systems in all phases of the SLDC.
- Participate in compliance audits as security SME.
- Mentor junior team members and co-workers on security best practices.
Skills Required:
Information Security
Candidate Attributes:
- Significant knowledge of security best practices for client-server product architectures, focusing predominantly on cloud-based server development
- Familiarity with API Security, Container Security, GCP/AWS Cloud Security
- Experience with Kubernetes and securing container workloads, networking, PKI infrastructure, authentication protocols like OIDC, OAuth, and SAML.
- Experience with cloud-based security management/IDS/IPS/SIEM tools, security vulnerability assessments, encryption, etc
- Familiarity with Information Security frameworks/standards (i.e. CIS, NIST, SOC2, PCI, GDPR, CCPA, etc)
- CISM, CISSP or other Security Certifications.
- Life-long learner; always looking to stay up to date with latest attack vectors, vulnerabilities, remediation and protection paradigms, etc.
- Self-motivated, proactive, driven individual
- Strong interpersonal, oral, and written communication skills
- Ability to work and collaborate in a fast-paced, geographically dispersed team
Job Code: KL-3WMWKEY4
About Us
IDfy is Asia’s leading TrustStack, trusted by the best, with global expertise and enterprise-grade tech, we’re solving trust challenges, making compliance easy, fraud detection smarter, and onboarding seamless.
IDfy’s three platforms- OnboardIQ, OneRisk, and Privy - come together to form one seamless solution enabling trust.
OnboardIQ is an onboarding platform that accelerates growth with frictionless omni-channel onboarding, while mitigating fraud and improving quality of account.
OneRisk is a fraud and risk management platform to mitigate financial, legal, and reputational risks and avoid losses with proactive fraud prevention. It covers individual risk, entity risk, and asset risk.
Privy is a privacy and data governance platform to ensure DPDPA compliance through trust and privacy governance suite and avoid monetary and reputational loss.
Do check out more of the stuff we do:
IDfyU (Candidate page): https://sites.google.com/idfy.com/idfyu/home
Instagram: https://www.instagram.com/we.are.idfy/
LinkedIn: https://www.linkedin.com/company/idfy/
IDfy’s three platforms- OnboardIQ, OneRisk, and Privy - come together to form one seamless solution enabling trust.
OnboardIQ is an onboarding platform that accelerates growth with frictionless omni-channel onboarding, while mitigating fraud and improving quality of account.
OneRisk is a fraud and risk management platform to mitigate financial, legal, and reputational risks and avoid losses with proactive fraud prevention. It covers individual risk, entity risk, and asset risk.
Privy is a privacy and data governance platform to ensure DPDPA compliance through trust and privacy governance suite and avoid monetary and reputational loss.
Do check out more of the stuff we do:
IDfyU (Candidate page): https://sites.google.com/idfy.com/idfyu/home
Instagram: https://www.instagram.com/we.are.idfy/
LinkedIn: https://www.linkedin.com/company/idfy/
Why Us?
At IDfy, you will work on the entire end-to-end solution rather than a small cog of a giant wheel.
Thanks to our problem-centric approach, one in which we find the right technology to solve a problem rather than the other way around, you will always be working on the latest technologies.
You should be sold by now, but if you're not, here's some more. You'll have the chance to brainstorm in bean bags, strategise over foosball, and collaborate with a crew that's as quirky as it is brilliant.
Thanks to our problem-centric approach, one in which we find the right technology to solve a problem rather than the other way around, you will always be working on the latest technologies.
You should be sold by now, but if you're not, here's some more. You'll have the chance to brainstorm in bean bags, strategise over foosball, and collaborate with a crew that's as quirky as it is brilliant.
