CGS Business Solutions is committed to helping you, as an esteemed IT Professional, find the next right step in your career. We match professionals like you to rewarding consulting or full-time opportunities in your area of expertise. We are currently seeking Technical Professionals who are searching for challenging and rewarding jobs for the following opportunity.
Our client, an International Financial Investment Services firm located in Irvine, CA is seeking to hire a REMOTE PERM Sr DevSecOps Engineer will play a crucial role in integrating security practices into our development and operations processes. This position will work closely with the development, operations, and security teams to ensure the continuous integration and continuous delivery (CI/CD) pipelines are secure, efficient, and compliant with industry standards and best practices. The ideal candidate will have a rich background in designing and implementing secure coding practices, understanding threats, and developing strategies to mitigate potential risks.
Qualifications:
- At least 5 years of experience in a similar DevSec Ops role
- Proficiency in security tools and technologies (e.g., static code analysis, dynamic application security testing, vulnerability scanners).
- Experience with CI/CD tools (e.g., Jenkins, GitLab CI, CircleCI).
- Demonstrated experience in identifying, analyzing, and mitigating sophisticated cyber threats.
- Knowledge of cloud security (e.g., AWS, Azure, Google Cloud) and container security (e.g., Docker, Kubernetes).
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Ability to work collaboratively in a fast-paced environment.
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related experience.
Preferred:
- Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or GIAC certifications.
- Experience with infrastructure as code (IaC) tools (e.g., Terraform, Ansible).
- Familiarity with compliance frameworks and standards.
Essential Duties and Responsibilities include the following but are not limited to. Additional duties or job functions may be required.
- Establish Security best practices around code history and releases in order to avoid breaches by wrapping sec around prod apps
- Assess current state and make recommendations on workflow, best practices etc.
- Perform secure code reviews
- Strong emphasis on Security Integration working with embed security controls and practices into the CI/CD pipeline.
- Collaborate with development teams to integrate security tools and processes into the development lifecycle.
- Ensure that security is considered at every stage of the software development process, from design to deployment.
- Focus on Vulnerability Management, conducting regular security assessments and vulnerability scans of applications and infrastructure.
- Monitor and address security vulnerabilities in applications and systems.
- Implement automated security testing tools and processes.
- Manage Incident Response and assist in the development and execution of incident response plans.
- Investigate and respond to security incidents and breaches.
- Perform root cause analysis and recommend corrective actions.
- Adherence with compliance and Best Practices ensuring relevant security standards and regulations such as ISO 27001, NIST, GDPR.
- Stay up-to-date with the latest security trends, threats, and technologies.
- Advocate for and implement security best practices across development and operations teams.
- Strong collaboration and communication skills working closely with cross-functional teams to promote a security-first culture.
- Provide security training and awareness programs for development and operations teams.
- Communicate security risks and recommendations to stakeholders and management.
About CGS Business Solutions:
CGS specializes in IT business solutions, staffing and consulting services. With a strong focus in IT Applications, Network Infrastructure, Information Security, and Engineering. CGS is an INC 5000 company and is honored to be selected as one of the Best IT Recruitment Firms in California. After five consecutive Fastest Growing Company titles, CGS continues to break into new markets across the USA. Companies are counting on CGS to attract and help retain these resource pools in order to gain a competitive advantage the rapidly changing business environments.