Search Jobs

DevSecOps Engineer (Closed)

About the Opportunity

• Technical point of contact for third party assessors performing internal and/or external VA scanning, web application assessments and/or architecture
• Providing the list of in-scope systems that fall within the assessment scope
• Ensure all access to systems is properly planned, provided for the assessment and removed following the assessment as applicable

About You

• 2+ years DevOps experience
• Good scripting experience in your language of choice (Python, Bash, PowerShell, etc.)
• Proven experience with AWS/Azure Cloud infrastructure. Automating processes with Ansible/Terraform.
• Deep understanding of Docker, Kubernetes, kOps or AWS EKS deployments
• Experience with continuous integration and continuous deployment (e.g., Gerrit, GitLab, etc.)
• Security Certifications preferable
• Understanding security alerts out of SIEM and evaluating them
• Strong understanding of security best practices
• Ensure comprehensive and appropriate documentation at all stages, within an assignment
• Familiarity with OIDC/OAUTH/JWT/Rest API Protocol
• Working knowledge of Jira/Jenkins/Confluence Products
• Deploying JavaScript and Python applications into production
• DevOps in a Cloud Native context, using tools like Prometheus
• Continuous deployment
• Security within Agile/Scrum development methodology
• Switches/Routers/Firewalls (Basic configuration understanding)
• In-depth knowledge of IP, SSL, TLS
• Understanding protocol analyzers (Wireshark, tcpdump, etc.)
• Understanding of cryptography, X.509/PKI, cross certification
• Knowledge of network intrusion prevention/detection techniques
• Knowledge of SIEM solutions and alert optimization
• Working knowledge of OpenSSL and ciphers
• Network and OS (Linux/Windows) hardening 
• Proficient in Linux and Windows system administration
• Understanding of evolving Attack knowledge of Windows/Linux based attacks
• Working knowledge of Vmware/Vcenter
• Experience performing offensive assessments, penetration testing or vulnerability analysis
• Basic knowledge and exposure of tools (Nessus, Burp, Nikto, Kali OS, Metasploit) to scan system devices for vulnerabilities according to compliance policies
• Basic scripting knowledge Powershell
• Knowledge of compliance standards such as PCI/SOC2/NIST CSF/ITSG-33 Anex4-1 Protected B

Salary Range

$90,000 - $110,000/year

How to Apply

Click the “Apply Now” button and follow the instructions to submit your resume. Please note that we only accept documents in MS Word or Rich Text formats. When referencing this job, quote #28861.

You must currently reside within the Greater Toronto Area and be permitted to work in Canada to be considered for this opportunity. A recruiter will be in touch with you if your profile meets our client’s requirements for this role.