SecOps Engineer

Job Title: SecOps Engineer

Location: US Remote

Duration: 12 month contract

Responsibilities:

• Security Operations & Monitoring:

  • Implement and manage security monitoring tools such as Wiz, Qualys, and Trivy to detect vulnerabilities and ensure continuous security.
  • Monitor alerts, triage incidents, and respond to security events in a timely manner.
  • Build and maintain security dashboards for real-time visibility into potential risks.

• Vulnerability Management & Remediation:

  • Conduct regular vulnerability scans, risk assessments, and penetration tests to identify and prioritize vulnerabilities.
  • Develop remediation strategies and collaborate with cross-functional teams (IT, DevOps, Engineering) to ensure timely resolution of vulnerabilities.
  • Create detailed vulnerability reports and provide remediation recommendations based on risk severity.

• Cloud Security (AWS):

  • Ensure security best practices are followed across AWS environments, including access control, network security, and encryption.
  • Manage AWS Identity and Access Management (IAM) policies and configure AWS security services (GuardDuty, Inspector, CloudTrail).
  • Automate security processes for continuous compliance across AWS infrastructure.

• Container Security (Kubernetes):

  • Ensure the security of Kubernetes clusters and containerized applications by deploying security tools such as Trivy for container scanning.
  • Implement network policies, Role-Based Access Control (RBAC), and secure configurations in Kubernetes environments.
  • Identify and resolve vulnerabilities in container images, Kubernetes configurations, and related components.

• Security Automation:

  • Design and implement automation scripts and tools to streamline vulnerability scanning, incident response, and remediation workflows.
  • Integrate security tools into CI/CD pipelines to ensure secure code and infrastructure deployments.

• Compliance & Auditing:

  • Ensure compliance with security standards (e.g., ISO, SOC 2, PCI DSS) and industry best practices.
  • Participate in security audits, providing evidence of vulnerability management processes and security controls.
  • Work with teams to maintain audit trails and reporting for compliance purposes.

• Collaboration & Leadership:

  • Act as the security point of contact for all vulnerability-related issues and provide guidance on best practices.
  • Collaborate with development, operations, and IT teams to implement security policies, remediation plans, and risk mitigations.
  • Provide security training and awareness to internal teams to foster a security-first mindset.

Requirements:

• Experience with Security Tools: Hands-on experience with Wiz, Trivy, Qualys, and other security tools for cloud and container security.
• Cloud Security (AWS): Strong understanding of AWS security services and best practices for cloud security.
• Container Security (Kubernetes): In-depth knowledge of Kubernetes security configurations, container scanning, and containerized environments.
• Vulnerability Management: Demonstrated experience in vulnerability assessment, remediation, and working with stakeholders to reduce risk.
• Automation: Experience with scripting languages (e.g., Python, Bash) to automate security processes and integrate tools into CI/CD pipelines.
• Incident Response: Proficient in incident response processes, including triaging security incidents and coordinating with other teams for resolution.
• Security Certifications: Certifications such as CISSP, CISM, AWS Certified Security, or Kubernetes Security Specialist are a plus.
• Collaboration & Communication: Strong interpersonal and communication skills, with the ability to work cross-functionally with different teams.