Responsibilities 

 

• Tightly integrate security tools and processes throughout the DevOps pipeline.


• Establish Policies and Procedures to help the organization keep up with the pace of application development all the while staying secure and compliant.


• Automate core security tasks by embedding security controls early on in the software development lifecycle.


• Continuous monitoring and remediation of security defects across the application lifecycle including development and maintenance.


• Be the security advisor for product managers, development and system operations.


• Help us to setup processes to wade through security questionnaires and certifications 

• Previous experience with an infosec role


• You're able to work independently


• You properly document things


• Experience with Web technologies


• You have experience with a couple of the following security technologies: Gauntlt, BDD-Security, Snyk, InSpec, Brakeman, ZAP, OSQuery, Trufflehog,


• Dependency-Check, Error-Prone


• Experience with any of the following is a plus: GitLab-CI, Chef, Ruby, Docker, Kubernetes, Terraform, Penetration testing, Incident Response