Full-Time DevSecOps Engineer

The Infrastructure department is responsible for influencing and tracking change, providing frontline support, and delivering software-defined solutions. We are seeking a highly skilled SRE / DevOps / DevSecOps Engineer to join our team and take ownership of security management within our on-premise infrastructure. The ideal candidate will have a strong Linux and networking background, expertise in security testing, and experience in compliance management.

Main Responsibilities

• CVE Management: Identify, track, and mitigate vulnerabilities affecting our infrastructure, containers, and software.
• Security Management of On-Premise Infrastructure: Ensure security best practices for servers, networks, and storage systems.
• OS/Container/Software Patching Policies & Processes: Develop and maintain a structured approach to patch management to mitigate security risks.
• Security Reports & Audit Cooperation: Collaborate with internal teams and external auditors to ensure compliance with industry standards and regulations.
• Linux Hardening: Implement and enforce security configurations to protect against threats and vulnerabilities.
• Security Testing & Penetration Testing: Conduct security assessments, vulnerability scanning, and ethical hacking to identify and remediate weaknesses.

Core Requirements

• Linux Expertise: Strong knowledge of Linux systems, including security configurations and administration.
• Networking Knowledge: Proficiency in network protocols, firewalls, and security best practices.
• Firewall & Packet Filtering: Experience with nftables and iptables for securing network traffic.
• Containerization & Orchestration: Practical knowledge of Docker and container security best practices.
• SIEM Knowledge: Experience with Security Information and Event Management (SIEM) tools for threat detection and response.
• Python Programming: Ability to write automation scripts and security tools in Python.
• Security Testing & Penetration Testing: Experience in identifying vulnerabilities, performing ethical hacking, and reporting findings.
• CVE Management: Hands-on experience tracking and mitigating security vulnerabilities (CVEs).
• Compliance & Audit Management: Understanding of security compliance frameworks (e.g., ISO 27001, NIST, CIS benchmarks).
• Configuration Management: Experience with Ansible or SaltStack to automate system and security configurations.

What is the last date for applying to the job?

Which countries are accepted for this remote job?