Senior Cyber Security DevSec Ops Engineer to DAO Metaplayer

2 أكتوبر، 2022

0 4 3 دقائق

الوصف الوظيفي

Experienced Senior Cybersecurity DevSecOps Engineer

Job Purpose As a senior member of growing team of an DAO Metaplayer company.

The Senior Cybersecurity DevSecOps Engineer will enable our software development teams to develop quality services, through architecting and building secure container, Secure CI-CD pipeline, and monitoring and act on Security Incidents and vulnerabilities identified via various systems. Key Responsibilities

Job Specific Responsibilities

Responsible for carrying out activities around Security Solution design, documentation, planning and implementation of a data privacy and security programs (including selection and deployment of any identified tools) and daily Security Operations support.

▪ Security Solution design, documentation, planning and implementation of a data privacy and security programs

▪ Including selection and deployment of any identified tools

▪ Daily Security Operations support for the decentralized metaverse maker.

▪ Cloud Security and DevSecOps in-depth experience

▪ Supporting development and Operation teams with application configuration for deployment, monitoring and other automation.

▪ Testing, debugging and troubleshooting of platform level problems.

▪ Work with third-party and other internal providers service to support a variety of integrations.

▪ Working with product teams on a range of tools and services, improving products to meet user needs.

▪ Participating in sprint planning to work with developers and project teams to ensure projects are deployable and monitorable from the outside.

▪ Proactively advice on best practices.

▪ Assist in budgeting process. Senior DevSecOps Specific;

▪ Supporting development teams with application configuration for deployment, monitoring and other automation.

▪ Architecting and building modern cloud infrastructure to host essential services for customers, ensuring highly available, resilient applications.

▪ Operational management of Linux servers, delivering a complex web application stack.

▪ Building and configuring new server platforms and the automated tooling to do so.

▪ Working with developers to test, debug and troubleshoot issues and problems.

▪ Working with product teams on a range of tools and services, improving products to meet user needs.

▪ Participating in sprint planning to work with developers and project teams to ensure projects are deployable and monitorable from the outside.

Education, Experience and Required Skills

Educational Qualification Degree in Computer Science, Software Engineering or related preferred Experience Minimum 4 years previously on Cybersecurity experience. CISSP and CISM Certifications is plus.

Essential Skills · Deep understanding and experience on various cybersecurity technologies, architecture and process. · Must have in-depth understanding and hands-on experience in DevSecOps practices in AWS / Azure/ GCP/DO services. · Experience configuring and managing Linux servers for serving a dynamic website. · Experience debugging a complex multi-server service. · Scripting or basic programming skills. · Deploying and configuring machines in a cloud environment. · Understanding continuous integration and delivery. · Comfortable with configuration management tools: at least one of Salt, Chef, or Puppet. · Basics of web3

Previous experience deploying web services in .NET or NodeJS; or previous experience developing web applications in NodeJS, advantage is: Solidity, Rust · Experience working in an agile environment. · Knowledge of the use of version control systems such as git or subversion. · Hands-on experience in IAM lifecycle and tools for SSO, MFA, Cloud IDP and Federations is plus · Hands-on experience in Data protection – Data Classification, DLP, DRM, and database security · Hands-on experience in Security Operation center – SIEM management , Vulnerability assessment and threat intel integrations.

Location Dubai, DMC

المهارات

Desirable Skills · Review and recommend security technologies to protect company assets · Strong written and verbal communication skills, ability to form strong relationships across multiple departments and third parties In-depth Understandings on NESA , GDPR compliance and NIST/CIS framework · Understanding of techniques for management of encryption keys and certificates. · Experience with open-source solutions and community. · Understanding and experience of implementing 12 Factor apps.