Sr DevSecOps Systems Architect



Fortune 500 Commercial Real Estate company CBRE is seeking a security architect for its DevSecOps program. This position will have the opportunity to build security into applications being migrated to the cloud. Are you an innovator looking to leverage open source technologies to secure cloud-based applications? This is an amazing opportunity to set the global direction for DevSecOps for a growing and innovative company working with industry recognized leaders. Competitive pay and benefits, collaborative work environments, and a chance to make a difference.

Job Responsibilities:

Work closely with product and platform teams to engineer and implement cloud security controls with a focus on DevSecOps

Implement a tools driven and highly automated approach to deliver our key security management processes by exploiting current investments and/or identify new tooling.

Design and implement AWS/Cloud based DevSecOps processes and tools
Develop procedures to automate security tasks during code builds and deployments

Assist and train team members in the use of cloud security tools and the resolution of security issues

Develop and maintain documentation for security systems and procedures
Build working relationships with corporate technology and business teams

Build security utilities and tools for internal use that enable you and your fellow Security Engineers to operate at high speed and wide scale.

Evaluate security technologies for cloud environments to implement controls in the most streamlined and integrated manner

Deploy automated security solutions for cloud delivery processes

Deploy compliance solutions for large-scale cloud environments using container and microservice technologies

Develop security and compliance capabilities in support of DevOps processes
Craft and evangelize secure cloud platform & product requirements

Communicate security risks and solutions to business partners, platform & product teams

Stay current on security industry trends

Skills & Qualifications:

Bachelor’s degree (BA/BS) in a related field of work or equivalent work experience. Requires technical and business knowledge in multiple disciplines/processes. Typically has 10+ years of relevant work experience.
6+ years experience in a technical IT security role in a medium to large sized company
Minimum 4 years of experience implementing and automating Cloud DevSecOps

Hands on experience and solid understanding of AWS services such as VPC, EC2, RDS, IAM, KMS, WAF, Lambda, CloudTrail, CloudFormation, CloudWatch, Config, and others

Verbose in Python, Ruby, Go, .NET, Java, and modern scripting languages

Familiarity supporting and/or developing open source software

Manage and/or deploy multiple concurrent projects

Knowledge of AWS automation strategies and tools

Experience in version control systems and secure code management tools

Experience administering and hardening Linux and Windows systems

Familiarity with security issues associated with containers, distributed systems, and large-scale web applications

Teach, train, and mentor other team members

Ability to work in a fast-paced, rapidly changing environment

Strong verbal and written communication skills

Solid knowledge of DevOps methodologies and maintaining security in CI/CD processes

CISSP and CCSP certifications preferred

To apply for this job please visit the following URL: →