DevOps Engineer with a Focus on Security and Compliance

DevOps Engineer (with a Focus on Security and Compliance)
Job Description:

We are seeking a highly skilled DevOps Engineer with a strong focus on security and compliance to join our team. This role involves working at the intersection of software development, IT operations, and cybersecurity, ensuring that our infrastructure is secure, efficient, and compliant with standards such as SOC 2. The ideal candidate will have a passion for automating processes, a keen eye for security, and the ability to implement and maintain secure and resilient systems.

Responsibilities:

Design, implement, and manage secure, scalable, and reliable cloud-based infrastructure.
Integrate security tools and practices into the CI/CD pipeline to identify and mitigate risks early in the development cycle (DevSecOps).
Collaborate with development teams to incorporate security and compliance requirements into software design and deployment.
Automate deployment processes, ensuring that security and compliance controls are consistently applied.
Monitor system performance, security alerts, and compliance reports, responding to iUpgrade to see actual info and issues as they arise.
Stay updated with the latest in security technologies and compliance standards, applying best practices to our infrastructure and processes.
Work closely with compliance analysts to ensure SOC 2 and other relevant compliance requirements are met and maintained.
Document security procedures and compliance measures.
Qualifications:

Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
Proven experience in DevOps, with a strong background in cloud security and compliance.
Expertise in cloud services (AWS, Azure, GCP), including their security tools and features.
Experience with automation and configuration management tools (e.g., Ansible, Terraform, Chef, Puppet).
Knowledge of CI/CD tools (e.g., Jenkins, GitLab CI, CircleCI) and integration of security tools within CI/CD pipelines.
Familiarity with SOC 2 compliance and other security frameworks.
Strong scripting skills (e.g., Python, Bash).
Excellent problem-solving skills and attention to detail.