Greetings from Uniqsoft INC!!!
We have "Application Security Architect with strong DevSecOps" Open positions at "NJ/Charlotte (Day 1 onsite)" - Long term Contract position.
Job Title: Application Security Architect with strong DevSecOps
Location: NJ/Charlotte (Day 1 onsite)
Position type: Fulltime / Permanent Hire
Visa Type: US Citizens
Job Description:
We are seeking a highly skilled and experienced Application Security Architect with strong DevSecOps expertise to assess the CI/CD pipelines and strategize on how to modernize pipelines and remove manual processes. This role is pivotal in embedding security controls and automation into every phase of the software development lifecycle (SDLC).
Key Responsibilities
- Assess the architecture, controls, processes and deployments of secure CI/CD pipelines
- Assess current integrations of security controls and automation in the development workflows
- Collaborate with development, operations, and security teams to understand the security best practices and compliance standards
- Review the adoption of secure coding practices and their effectiveness
- Evaluate potential options for automating security checks, integrating security tools and controls, and ensuring security throughout the development lifecycle
- Strategize and develop plans to modernize pipelines and remove manual processes
Required Skills & Qualifications
- Proven hands-on experience in designing and securing DevOps pipelines and security engineering roles
- Expertise in cloud technologies, automation tools, security controls, and a strong understanding of security frameworks and compliance standards
- Proven experience working with development, operations, and security teams to integrate security practices into the development lifecycle
- Strong understanding of CI/CD tools (e.g., Jenkins, GitLab CI, GitHub Actions, Azure DevOps).
- Working knowledge in branching strategy and development lifecycle management.
- Expertise in containerization and orchestration (e.g., Docker, Kubernetes).
- Proficiency in infrastructure as code (IaC) tools (e.g., Terraform, Ansible, CloudFormation).
- Deep knowledge of security tools and practices (e.g., SAST, DAST, SCA, secrets management).
- Experience with cloud platforms (AWS, Azure, GCP) and their security services.
- Strong understanding on secure development lifecycle framework, secure code practice and OWASP Top10 vulnerabilities and remediation.
- Good knowledge of scripting skills (e.g., Python, Bash, PowerShell).
- Familiarity with compliance frameworks (e.g., NIST, ISO 27001, SOC 2).
Preferred Qualifications
- Certifications: CISSP, CCSP, or equivalent. Azure, AWS or GCP certification (Security and Devops)
Skills Matrix:-
Total work experience in IT Industry: Years
Total work experience in USA: Years
Application Security Architect: Years
DevOps: Years
Cloud platforms (AWS, Azure, GCP) and their security services: Years
Scripting skills (e.g., Python, Bash, PowerShell) : Years
Proficiency in infrastructure as code (IaC) tools (e.g., Terraform, Ansible, CloudFormation) : Years
Security tools and practices (e.g., SAST, DAST, SCA, secrets management) : Years
Strong understanding on secure development lifecycle framework, secure code practice and OWASP Top10 vulnerabilities and remediation: Years
Familiarity with compliance frameworks (e.g., NIST, ISO 27001, SOC 2) : Years
Thanks and Have A Wonderful Day,
Srikanth
(Technical Recruiter)
Uniqsoft INC, |4025 Tiber Falls Dr, Ellicott City, MD 21043 |
Direct: 443-636-2517
FAX: 443-288-4584| Email: sree@uniqsoftinc.com | www.uniqsoftinc.com
Hangout: srikanthrecruiter1103@gmail.com
Linkedin: linkedin.com/in/srikanthkasha
You received this message because you are subscribed to the Google Groups "Xrecnet IT Recruiters Network - Corp to Corp IT Jobs & Hotlists" group.
To unsubscribe from this group and stop receiving emails from it, send an email to xrecnet+unsubscribe@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/xrecnet/CAHZ6c%2BQgpMPjij%2BBrQHzvHVehnZ-BLnX7iLc%3D57R2qwg0tnRag%40mail.gmail.com.
No comments:
Post a Comment