Sr DevSecOps Systems Architect

CBRE

SUMMARY: 



Fortune 500 Commercial Real Estate company CBRE is seeking a security architect for its DevSecOps program. This position will have the opportunity to build security into applications being migrated to the cloud. Are you an innovator looking to leverage open source technologies to secure cloud-based applications? This is an amazing opportunity to set the global direction for DevSecOps for a growing and innovative company working with industry recognized leaders. Competitive pay and benefits, collaborative work environments, and a chance to make a difference.

Job Responsibilities:



Work closely with product and platform teams to engineer and implement cloud security controls with a focus on DevSecOps

Implement a tools driven and highly automated approach to deliver our key security management processes by exploiting current investments and/or identify new tooling.


Design and implement AWS/Cloud based DevSecOps processes and tools
Develop procedures to automate security tasks during code builds and deployments


Assist and train team members in the use of cloud security tools and the resolution of security issues


Develop and maintain documentation for security systems and procedures
Build working relationships with corporate technology and business teams


Build security utilities and tools for internal use that enable you and your fellow Security Engineers to operate at high speed and wide scale.


Evaluate security technologies for cloud environments to implement controls in the most streamlined and integrated manner


Deploy automated security solutions for cloud delivery processes


Deploy compliance solutions for large-scale cloud environments using container and microservice technologies

Develop security and compliance capabilities in support of DevOps processes
Craft and evangelize secure cloud platform & product requirements


Communicate security risks and solutions to business partners, platform & product teams


Stay current on security industry trends


Skills & Qualifications:



Bachelor’s degree (BA/BS) in a related field of work or equivalent work experience. Requires technical and business knowledge in multiple disciplines/processes. Typically has 10+ years of relevant work experience.
6+ years experience in a technical IT security role in a medium to large sized company
Minimum 4 years of experience implementing and automating Cloud DevSecOps


Hands on experience and solid understanding of AWS services such as VPC, EC2, RDS, IAM, KMS, WAF, Lambda, CloudTrail, CloudFormation, CloudWatch, Config, and others


Verbose in Python, Ruby, Go, .NET, Java, and modern scripting languages


Familiarity supporting and/or developing open source software


Manage and/or deploy multiple concurrent projects


Knowledge of AWS automation strategies and tools


Experience in version control systems and secure code management tools


Experience administering and hardening Linux and Windows systems


Familiarity with security issues associated with containers, distributed systems, and large-scale web applications


Teach, train, and mentor other team members


Ability to work in a fast-paced, rapidly changing environment


Strong verbal and written communication skills


Solid knowledge of DevOps methodologies and maintaining security in CI/CD processes

CISSP and CCSP certifications preferred


To apply for this job please visit the following URL: http://itjobpro.com/98275 →