Unfortunately, this job posting is expired.
Don't worry, we can still help! Below, please find related information to help you with your job search.
Don't worry, we can still help! Below, please find related information to help you with your job search.
Related keywords
Some similar recruitments
Senior Or Lead Devops Specialist
Recruited by BGC Engineering Inc. 11 months ago
Address Vancouver, British Columbia, Canada
Cyber Security Engineer Jobs
Recruited by Ntirety 1 year ago
Address Vancouver, British Columbia, Canada
Cyber Security Engineer - Hybrid Remote
Recruited by COBS Bread 1 year ago
Address Vancouver, British Columbia, Canada
Senior Devsecops Engineer (Pressreader)
Company | BCJobs |
Address | Richmond, British Columbia, Canada |
Employment type | FULL_TIME |
Salary | |
Category | Technology, Information and Internet |
Expires | 2023-07-19 |
Posted at | 11 months ago |
PressReader is a rapidly growing technology company that partners with the world’s leading publishers to deliver content to millions of users in over 160 countries. Our progressive approach to digital distribution has allowed publishers such as The Washington Post, The Guardian, Newsweek, Rolling Stone, The Globe and Mail, and Vogue to find new audiences through business partnerships, including airlines, hotels, cruise ships, libraries, and thousands of other companies worldwide.
- Design and implement a secure development strategy
- Participate in infrastructure architecture and services development as a security expert
- Assess and prioritize potential security threats and vulnerabilities, and identify appropriate countermeasures and mitigation strategies
- Harden Kubernetes clusters, on-prem and cloud infrastructure for enhanced security
- Monitor and analyze system logs, security events, and alerts to promptly identify and respond to security incidents
- Design, implement, and maintain a vulnerability management platform
- Build secure base images for development teams
- Conduct regular security assessments, vulnerability scans, and penetration tests to identify and mitigate security weaknesses in applications, infrastructure, and code
- Implement security checks in CI/CD pipelines
- Implement and maintain dependency management processes and tools
- Implement security tools within Kubernetes clusters
- Enforce custom policies on Kubernetes objects using OPA (Open Policy Agent)
- Educate development teams on secure coding practices, security risks, and emerging threats, promoting a culture of security awareness and responsibility
- Ensure software applications adhere to industry regulations, standards, and security policies
- Work closely with development, operations, and security teams to foster collaboration, share knowledge, and align objectives to ensure secure software delivery
- Automate security-related tasks and processes, such as vulnerability scanning, code analysis, and compliance checks to improve efficiency and accuracy
- Implement and maintain security controls and procedures to meet compliance requirements
- 6 to 8 years of experience in cybersecurity
- In-depth understanding of cloud security principles and experience working with major cloud service providers (e.g., AWS, Azure, GCP) to architect secure cloud infrastructure.
- Deep understanding of security principles, secure coding practices, and secure SDLC.
- Strong knowledge of security assessment and testing tools like Burp Suite, Nuclei, or OWASP ZAP.
- Bachelor’s degree in Computer Science or related field
- Proven track record of successfully implementing security controls and hardening measures for infrastructure components, including network devices, servers, and databases.
- Strong proficiency in CI/CD, IaC, and automated testing, with expertise in tools like Gitlab CI, Git, Docker, Terraform and Kubernetes.
- Extensive experience with security monitoring tools, SIEM, IDS, log analysis, and incident response processes.
- Extensive experience in DevSecOps methodologies, with a proven track record in implementing security practices within complex software environments.
- Familiarity with compliance frameworks and standards relevant to the organization's industry and ability to ensure compliance across systems and applications.
- Expertise in conducting advanced security assessments, vulnerability scanning, penetration testing, and code reviews.
- Excellent problem-solving abilities and the capacity to provide innovative and effective security solutions.
- Strong communication and collaboration skills to work effectively across teams.
- Extensive experience with security automation using languages like Go, Python and Bash.
- Have experience achieving SOC2 HIPAA, ISO 27001 Compliance levels
- Experience with security at the network, transport, and application layers (DNS-SEC, OWASP, HTTP, TLS, etc.)
-
Agente Ou Agent De Prévention De Soir Au Service De La Gestion Des Sentences
By Ministère de la sécurité publique At Montreal, Quebec, Canada 8 months ago
-
Lead Line Cook/Manager On Duty
By Impact Kitchen At Greater Toronto Area, Canada 8 months ago
-
Refinish Tech (Temporary) Jobs
By Boyd Group Services Inc. At Saskatoon, Saskatchewan, Canada 8 months ago
-
Vice President - Treasury
By Boyd Group Services Inc. At Winnipeg, Manitoba, Canada 8 months ago
-
Rock Mechanics Eit Jobs
By WSP in Canada At Greater Sudbury, Ontario, Canada 8 months ago