Full-Time Senior DevOps Engineer

This role involves acting as a subject matter expert in secure coding, providing guidance, mentorship, and hands-on expertise across multiple technologies.

• Secure coding enablement (25%): Act as a subject matter expert in secure coding across multiple languages and frameworks (e.g., C#, ASP.NET, MVC, jQuery, TypeScript, Angular, Bootstrap). Provide guidance and mentorship to developers and code champions. Continuously learn and share knowledge to elevate team capabilities and ensure consistent quality of analysis.
• Threat modeling and vulnerability analysis (25%): Apply deep knowledge of security principles, threat modeling, and common vulnerabilities (e.g., SQL Injection, XSS, Session Management) to help teams proactively secure applications and systems. Collaborate with developers to interpret scan results and recommend remediation strategies.
• Tooling and automation for security processes (25%): Design, implement, and maintain automated scanning solutions using tools such as GitHub, GitHub Advanced Security, Fortify On-Demand, Web Inspect, Qualys, and Application Insights. Integrate these tools into CI/CD pipelines (e.g., Azure DevOps) to support Agile and DevOps workflows. Monitor tool usage and compliance across teams.
• Conducting manual and automated Code reviews with architectural guidance (25%): Perform manual and automated code reviews across diverse architectures (Microservices, MVC, SOA+SPA). Identify security gaps and provide actionable recommendations. Collaborate with architects and developers to improve design patterns and reduce risk.

The engineer will work closely with development teams to ensure application security and compliance through proactive identification and remediation of vulnerabilities.

What is the last date for applying to the job?

Which countries are accepted for this remote job?