Job Description

• Pune

What You'll Do

In this role you will have the opportunity to engage with the best and brightest engineers and architects as they build our future application and service capabilities, while ensuring our current generation solutions continue to deliver the trust and reliability our customers expect. If you want to make a big difference in a fast-moving environment without endless meetings, if you want to set your direction instead of having it set for you, if you want to have all the benefits of start-up and an established company, then this is the job for you. Our ideal DevSecOps Automation Engineer has experience working on a variety of platforms and technologies and is passionate about security's importance in the CI/CD pipeline. Automation is fundamental to modern agile security organizations, and you will be responsible for making the security pipeline and the underlying infrastructure valuable and consistent. You will strive toward Infrastructure-as-Code and Policy-as-Code to make our systems as reliable and maintainable as possible. You will provide guidance, training, and support to the rest of the Application Security team as they contribute additional tools to the security pipeline. You will be able to talk tech and business. You will work tirelessly to find the right solution, not the first solution. You thrive on challenge, and you are not afraid to dig in, all while having fun and not getting too serious.

• Creating and managing a security automation framework and pipeline.
• Maintaining and improving the infrastructure that security relies upon.
• Evangelizing and assisting the development teams with tool integrations across the organization
• Providing training and guidance to security engineering to integrate new tools into the security pipeline.
• Developing and implementing manual and automated security tests.

What You'll Need to be Successful

Qualifications

• 4+ years' of software development experience, preferring in Go/Python.
• Experience working with terraform IaC.
• Good knowledge of CICD preferably using Gitlab.
• Experience on AWS infrastructure and AWS security services.
• Experience working with tools that support a secure SDLC (Wiz, CheckMarx, ThreadFix, Acunetix, Burp Suite, Hashicorp vault etc.)
• Experience performing peer code review.
• Experience with agile software development processes and methodologies
• Working knowledge of source code repositories including Git

Preferred Qualifications

• Bachelor's Degree in Computer Science, Engineering, or related field
• Experience in Security Engineering roles, in support of the SDLC.
• Experience in building security baseline docker images and AMIs.
• Experience in Kubernetes.
• Experience working on Hashicorp vault.