Description

Job Description :
Duties:

  • Design and implement security automation into existing systems using a combination of Python, Bash, and CI/CD tooling.  
  • Design and integrate automated security controls, such as SAST, SCA, etc. into an existing, customized SDLC. 
  • Work across functional teams to gather requirements and propose technical solutions. 
  • Work across teams to enforce security controls consistently and reduce existing security debt. 
  • Direct application teams with onboarding the cloud security requirements; working with vendors to troubleshoot the platform and issues related to such integrations. 
  • Leverage automated process to mitigate security vulnerabilities in the environment by working with the Application Security team to triage security vulnerabilitiesX Contribute to security requirements across CNA cloud applications, provide guidance for cloud security and automation, and ensure that logical security controls are manageable and scalable.  
  • Stay abreast of industry trends and best practices; conduct research, tests, and execute new techniques that can be reused and applied to SDLC. 
  • Identifying security-related issues in the cloud environment
  • Deploying security policies and assets in the cloud
  • Writing and customizing policies for other teams
  • Automating security tasks
  • Performing security-related scanning in pipelines
  • Creating a security framework in the cloud
  • Writing scripts using Python and Bash

Skills:

  • Strong oral and written communication skills in the English language to work effectively with all levels of end users and IT personnel. 
  • Proven track records of building CI/CD pipelines for both application and infrastructure, with a focus on security. 
  • Expert knowledge of Cloud Native Engineering (GCP preferred). Experience in cloud security is a strong plus. Excellent hands-on experience with securing containers at scale.
  • Any supply chain protection experience is a plus. 
  • Hands on experience developing and deploying applications in a containerized environment Mastery of automation tools (e.g., Concourse, Jenkins, Terraform, Ansible etc.).
  • GitHub Actions is a plus. 
  • Hands on experience developing, deploying and maintaining, automation using automated tooling using Python, Go, or similar.  
  • Comfort with automated, frequent, incremental code testing and deployment as part of a set of mature DevOps practices Expert knowledge of both Windows server operating system as well as expertise with one or more various Linux operating systems 

Education:

  • Bachelor's degree in computer science, or equivalent  
  • Minimum of 5 years of related work experience 

Required Skills:

  • Cloud Security
  • Linux
  • GCP
  • CNA
  • Supply Chain
  • Light development exp in Python, Bash
  • Terraform
  • Policy creation and writing
  • Wiz experience
  • GCP experience
  • Policy customization

Additional Skills:

  • Jenkins
  • Continuous Integration/Delivery
  • Gather Requirements
  • Welding,Shell Scripting
  • Github,Deployment

Software skills:

  • Python
  •  Bash
  •  Wiz
  •  Cloud


 

Key Skills
Education

Bachelor's Degree

Back To Jobs