Hi,
Greetings from Conch Technologies Inc
Position: DevSecOps Engineer ( Security )
Location: Austin, TX (5 days onsite per week)
Duration: Full Time
Pipeline Security Integration (GitHub Actions, GitLab), Infrastructure as Code (IaC) (Ansible , Terraform, Cloud Formation), IAM roles, encryption at rest/transit, and VPC security. Container/Kubernetes/EKS, DevOps /DevSecOps Practice, CI/CD pipeline
Pipeline Security Integration: Design and maintain automated security gates within CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins) using SAST, DAST, and SCA tools.
Infrastructure as Code (IaC) Security: Develop and enforce security policies for IaC (Terraform, CloudFormation, Ansible) using tools like Checkov, Terrascan, or OPA (Open Policy Agent).
Focusing on IAM roles, encryption at rest/transit, and VPC security.
Container & Kubernetes Security: Secure the container lifecycle, from base image hardening and vulnerability scanning \o runtime security in Kubernetes.
Vulnerability Management: Lead the "triage-to-remediation" workflow. Work directly with developers to provide actionable fixes for security findings rather than just handing over PDF reports.
Threat Modeling: Conduct architectural threat modeling sessions for new features to identify design-level risks before a single line of code is written.
Compliance Automation: Implement Compliance-as-Code to ensure the platform meets standards like SOC2, ISO 27001, or HIPAA automatically.
Mandatory Skills: Enterprise Platform DevOps Tools.
--
Thanks & Regards
Nayak Teketi
Never miss an opportunity! Create an alert based on the job you applied for.
