Remote DevSecOps Engineer at XM

The Role: 

The main responsibilities of the position include:

●        Conduct assessments and make recommendations to ensure that appropriate controls are in place

●        Participate in efforts that shape the company’s security policies, procedures, and standards for use in all DevSecOps phases 

●        Investigate and implement security best practices for containers, container images, and Kubernetes (AWS EKS) in all phases 

●        Configure and maintain platforms for workload protection 

●        Liaise with Cloud DevOps and Platform Engineers to investigate and implement security best practices for network security and access control in containerized environments, and suggest security improvements to the CI/CD process 

●        Investigate and implement security best practices for GitLab and Jenkins platforms, pipelines, and runners 

●        Liaise with developers to implement security best practices 

●        Create, develop, and implement solutions to address infrastructure and security requirements 

●        Identify and apply automation to improve security and reduce repetitive work

Main requirements:

●        BSc/MSc in Information Security or any other related field 

●        Minimum 5 years of working experience in Information Security with a focus of at least 2 years in DevSecOps 

●        Strong experience in securing containers, container images, and Kubernetes (preferably AWS EKS) 

●        Experience with securing GitLab and Jenkins platforms, pipelines, and runners 

●        Strong experience with Cilium or Kubernetes network policies 

●        Experience with Infrastructure as Code using Terraform and Policy-as-Code 

●        Technical knowledge in AWS security and networking services (IAM, CloudTrail, VPC, EC2, EKS, ELB) 

●        Ability to work autonomously with minimum supervision and to integrate well within a team 

●        Excellent problem-solving skills and the ability to quickly learn new technologies in depth

The following will be considered an advantage: 

●        Certified Kubernetes Security Specialist, Certified Kubernetes Administrator, and AWS Certified Security – Specialty certificates 

●        Hands-on experience with Prisma Cloud for workload protection

●        Experience with Helm, Istio, and scripting languages preferably in Python

Benefit from:

●        Attractive remuneration package 

●        Food allowance

●        Intellectually stimulating work environment

●        Continuous personal development and international training opportunities

All applications will be treated with strict confidentiality!