Job Description –

SecDevOps Engineer

Responsibilities:
● Conduct routine maintenance for SecOps servers (patching, hardening, upgrades, etc.) and deploy new servers as needed.
● Develop, deploy, and maintain infrastructure as code (Ansible, terraform, Cloudformation, etc.)
● Develop and maintain code in git (version control, branching, pull requests etc.)
● Administer and maintain security products (web application firewall, IDS, (h)IPS, EDR, phishing training, vulnerability management, SIEM, etc)
● Own Security Operations Infrastructure and interface with other operational teams around the organization.
● Act as a core member of the Incident Response Team, triaging, responding to and reporting incidents and associated metrics.
● Conduct routine log review of information security events, investigating and responding as necessary.
● Participate in on-call rotation.

Additional Roles and Responsibilities:
o Maintain a comprehensive understanding of our information systems.
o Work closely with the multiple operation teams to implement and enforce our policy.
o Conduct risk-based evaluation of policy exception requests.
o Monitor for triage and track remediation of vulnerabilities in our systems and networks.

Required Skills:
● Knowledge of endpoint and server operating systems (e.g. Linux, Windows, macOS) and relevant security risks, controls, and vulnerabilities.
● Strong knowledge of networking and network security fundamentals.
● Practical knowledge of enterprise security tools (anti-malware, firewalls, IDS/IPS, email monitoring, two-factor authentication, SIEM, etc.).
● Familiarity with AWS environments and AWS security tools.
● Familiarity with vulnerability management concepts, such as CVE and CVSS.
● Scripting experience, python preferred.
● Infrastructure as code experience preferred.
● CI/CD experience preferred.
● Familiarity with cloud computing environments and applications in a security context strongly preferred.
● Ability to quickly change priorities and handle simultaneous tasks.
● Excellent oral and written communications.

Education/Pre-requisites:
● 4 or more years of experience in the information security field.
● BS degree in Computer Science, Cyber Security, Information Technology (or related discipline).
● Graduate degree in Information Assurance (or related discipline) or equivalent formal training and experience in Information Security preferred.
● GIAC or OffSec certifications preferred.