DevSecOps Managing Consultant Position Overview: As a DevSecOps Managing Consultant, you will lead efforts to integrate security practices seamlessly into our clients' development and operations processes. You will manage a team of DevSecOps engineers, guiding them in automating security processes, implementing security best practices, and ensuring the continuous security of applications and infrastructure. The ideal candidate will have a strong background in both software development and security, with extensive experience in leadership and client management.
Key Responsibilities: Leadership and Management: Lead, mentor, and manage a team of DevSecOps engineers. Oversee the planning, implementation, and delivery of DevSecOps projects for clients. Serve as the primary point of contact for clients, ensuring their needs are met and expectations exceeded. Security Automation: Design, implement, and maintain security automation tools and processes to integrate security into the development and deployment pipeline. Collaborate with client development and operations teams to automate security testing, vulnerability scanning, and compliance checks. Infrastructure Security: Conduct security assessments and provide recommendations for securing client infrastructure components. Implement and manage security controls for cloud-based and on-premises environments. Collaborate with client system architects to ensure security is a fundamental part of the infrastructure design. Threat Intelligence Integration: Integrate threat intelligence feeds into security tools and processes to enhance the organization's ability to detect and respond to emerging threats. Stay abreast of the latest threat landscape and contribute to the development of proactive security measures. Incident Response: Lead incident response activities, investigate security incidents, and collaborate with cross-functional teams to mitigate and remediate security issues. Security Best Practices: Define and enforce security best practices for development, deployment, and operations. Conduct regular security training sessions for development and operations teams to enhance security awareness. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field. Proven experience in DevSecOps or a similar role, with a focus on integrating security into the development lifecycle. Extensive experience in leadership or management positions, preferably in a consulting environment. Strong understanding of cloud security principles and experience with cloud platforms (e.g., AWS, Azure, GCP). Familiarity with containerization and orchestration technologies (e.g., Docker, Kubernetes). Experience with security tools such as vulnerability scanners, intrusion detection systems, and security information and event management (SIEM) solutions. Knowledge of scripting and programming languages (e.g., Python, Shell, Java). Relevant security certifications (e.g., CISSP, Certified Ethical Hacker) are a plus.
#J-18808-Ljbffr