DevSecOps Lead
Information Technology
Blue Ash OH Contract To Hire Sep 21, 2022

DevSecOps Lead

Duration:
6 Month, Contract to Hire  
Location: Remote
Pay: $70+/hr

JOB DESCRIPTION
A monetary force, this company, with over one hundred and fifty billion dollars in annual revenue is the pulse of the retail industry. By having over 2,750 different locations in thirty-five states, there is no doubt that this company directly impacts the lives of many people in the American populous, and, by extension, in the world populous. Being a part of such a massive retail organization can be intimidating, but this company, through their subsidiaries, is able to maintain personal relationships with their employees. Through intentionality, integrity, and innovation, this company is able to be an ideal workplace that excites and has a profound impact on several communities. This company fully understands that by working together there is no limit to what can be created.

 

This Candidate should be prepared to lead product and engineering teams through the adoption of DevSecOps principles to identify and remediate vulnerabilities, promote knowledge, train on secure development practices, drive ongoing improvements in security practices, and foster a community of cybersecurity awareness. This Candidate should be willing to partner with technology and cybersecurity leadership to identify and implement initiatives to improve security practices. This Candidate will be responsible for collaboration with product and development teams to ensure identification and remediation of vulnerabilities and implementation of new cyber practices including the completion of security-related training and for delivering periodic updates to varying levels of leadership to raise visibility to ongoing cyber risk and progress towards adoption of cyber practices. This Candidate should innately want to drive a community of security awareness by coordinating with security champions across the development teams, to review and share best practices and areas of opportunity.

RESPONSIBILITIES

  • Leads interactive activities on cyber best practices and coaching of stakeholders across product and development teams and within the security organization
  • Identifies and promotes security best practices and controls across the organization
  • Designs, builds, and defends scalable, secure, and robust secure engineering processes program
  • Leverage various CI / CD pipelines and tools to identify, assess, and advise on the remediate of vulnerabilities
  • Reviews periodic vulnerability scans and works on creating reports that will communicate the result to leadership

REQUIREMENTS

  • 5+ years of experience in an IT development / DevOps role or related fields with working knowledge of Java, NodeJs, GoLang, .Net
  • Strong communication, presentation skills with experience working with varying levels of technical and business leadership
  • Experience with CI / CD pipelines and ALM tools necessary to conduct vulnerability scans, curate results, identify risk, and facilitate remediation
  • Be able to speak to containerization and virtualization and orchestration
  • Working with Terraform, Kubernetes, and Docker or alternatives like Podman to guide teams to best practice
  • Cloud certifications – Azure Security Engineer, Azure Solutions Architect, Azure Administrator, or like in GCP or AWS
  • Reporting, Excel, and Business Intelligence platform experience
  • Understanding of controlled data and compliance requirements related to pci-dss, hipaa, sox, ccpa / gdpr
Category Code: JN008