DevOps Security Engineer Jobs | TechMantra Global Jobs in Qatar

DevOps Security Engineer Jobs | TechMantra Global Jobs in Qatar

For More Jobs : Click Here

Job Details

Job Position – DevOps Security Engineer

Company Name – TechMantra Global

Location: Qatar, (Onsite)

Skillset requirements

•  5+ years in Development (not just testing) field and has chosen the path of security to build the career
•  Knowledge on APIs and Micro segmentation cohesion and knowledge on isolated workload deployments
•  Strong understanding of security concepts, including threat modeling, risk assessment, and vulnerability   management including shift left methodology towards S-SDLC
•  Knowledge of the SDLC and experience integrating security best practices at every process stage.
•  Familiarity with automation tools and scripting languages like Python and PowerShell.
•  Understanding cloud security principles, including secure architecture design and configuration management.
•  Knowledge on Jenkins, Gitlab, Docker, Kubernetes, Ansible, Terraform etc.
•  Core Authentication and Authorization principles that include Auth0, JWT etc.
•  Knowledge of container security principles, such as Docker and Kubernetes.
•  Experience with DevOps practices, such as continuous integration and delivery (CI/CD) and infrastructure as   code (IaC).
•  Experience with various compliance frameworks and regulations: PCI-DSS, HIPAA, and GDPR.
•  Good analytical problem-solving skills to scrutinize and solve very intricate security problems with effective   solutions.
•  Ability to work cohesively with cross-functional teams and possess good communication skills.
•  Passionate about continued learning and being aware of current security trends and technologies.
•  Must have Certified Dev Sec Ops Professional (CDP) / Certified Dev Sec Ops Expert (CDE)

Roles and Responsibilities

Below are some of the core responsibilities but not limited to:

• Integrating security features in the software development life cycle and Identification and probable security  risks, with their mitigating strategies for the entire S-SDLC.
• Implementation of security controls and Monitoring of the threat to security related to SSDLC.
• Ensuring regulatory compliances for standards of security.
• Proficient in uniting cross-functional teams and communicating clearly, while fervently pursuing knowledge of the latest trends and technologies in security.
• Build in security early and often within the SDLC, so each of the phases identifies and mitigates the risks in the process.
• Cultivate a security culture within the organization: every stakeholder should know their responsibilities with the SSDLC
• Automate everything in the security testing and deployment process that you can possibly automate, as more likely to be driven by human error.
• Take a security risk-based approach, focusing on all important but most critical assets and vulnerabilities.