DevSecOps/Cloud Security

ntetics, a leading global technology company providing custom software application development, distributed professional teams, software product quality assessment, and “all-things-digital” solutions, is looking for DevSecOps/Cloud Security to enrich its team with a skilled professional to spread the company’s ideas, vision, content and messages.

We're looking for AWS experience with a variety of AWS services, alongside strong focus on Security and DevSecOps. 

We need a profile with relevant experience and focus on cloud security, especially in AWS with in-depth cloud security experience and experience using a variety of AWS services. 

We need a profile with strong experience with network security questions and with strong experience with configuration for cloud security.

The role requires experience with security audit, good understanding of security practices and implementation of security solutions. We need experience with hands-on work in these areas: designing resilient infrastructures, securing DB/systems/networks (designing the solutions for that), performing vulnerability assessments and understanding incidents. Also creating security reports for key stakeholders, working on regulation for accessing data, etc. 

It is quite important as the role is less about DevOps and more about DevSecOps/Cloud Security.

About the Customer:

• An award-winning Forex and CFD broker that serves clients from 190+ countries on five continents. The company's mission is to keep pace with global market demands and approach clients’ investment goals with an open mind.

Project Team:

• When you join our team, you'll be immersed in a culture where teammates support each other to achieve better results. We believe that together we are better and can find brilliant solutions by sharing ideas.

Requirements

• Must to have relevant experience with       DevSecOps 
• Must to have relevant experience with Cloud security
• Must to have relevant experiencewith configuring monitoring tools from a security perspective (say Grafana, Prometheus, EFK). 
• Must to have focused on hands-on security in AWS (making assessments of potential threats in the cloud, ensuring secure infrastructure, etc.)
• Must to have relevant experience with securing AWS resources and network security.
• Must to have relevant experience with       DevSecOps  hands-on experience with setting up security solutions, securing networks, AWS resources
• Must to have relevant exprience with security focus and extensive DevSecOps work with AWS services
• Must to have relevant experience and focus on cloud security, especially in AWS. 
• Must to have experience with securing cloud infrastructure
• Must to have General experience of not less than 5 years in the DevOps field
• Must to have Minimum 2 years of working experience in Information Security, with a proven focus on Cloud Security
• Location: Bulgaria, Georgia, Hungary, Lithuania, Poland, Romania, Uzbekistan. 
• Long term period 100% remote ASAP
• BSc/MSc in Information Security or any other related field
• General experience of not less than 5 years in the DevOps field
• Minimum 2 years of working experience in Information Security, with a proven focus on Cloud Security
• Technical knowledge of Amazon Web Services (AWS)
• Proficiency with AWS services such as IAM, Organizations, SO, VPC, Transit Gateway, S3, EC2, RDS, ELB, CloudTrail, Config, Inspector, GuardDuty, WAF, etc.
• Clear understanding of current threats to Cloud infrastructure and advanced knowledge of securing such environments
• Expertise in DevSecOps methodologies is considered a plus
• Background building and deploying applications to the cloud (AWS, Azure, etc.) using Infrastructure as Code
• Ability to work autonomously with minimum supervision and to integrate well within a team
• Capability to quickly learn new technologies in depth
• Availability to work in CET timezone
• Nice to Have:
• Code tools such as Terraform
• Expertise in container security
• Proficiency with Microsoft Azure and Oracle Cloud
• English level:
• Upper-Intermediate
• Responsibilities: 
• Design and build resilient Cloud infrastructures that are protected against security threats
• Develop and assess Cloud security solutions to secure systems, databases, and networks
• Conduct assessment and make recommendations to ensure that appropriate controls are in place
• Gain insight into security incidents and threats by monitoring/analyzing logs and performing vulnerability assessments
• Participate in efforts that shape the company's security policies, procedures, and standards for use in Cloud environments
• Create technical and managerial level security reports for Cloud-based applications and infrastructure
• Implement and test network and security Disaster Recovery procedures to ensure business continuity
• Monitor the use of sensitive data and regulate access to safeguard information
• Ensure the confidentiality and integrity of data during transmission, storage, and processing