Sr. DevSecOps Engineer

Location: Remote USA
Job Type: Engineering

IQ Workforce is a leading recruiting firm for the engineering, analytics, and data science communities.

Our client is a global restaurant company, which engages in the development and operation of some of the most recognizable brands in the world. They have over 30,000 employees and operate over 50,000 restaurants in 150+ nations and territories. They put delicious food in the hands of customers through apps, websites, kiosks, POS, and other digital dining experiences – and they are building out a bold start-up team of engineers to help them deliver the next generation of software to their restaurants globally.

That is a huge responsibility, and their dynamic eCommerce Platform team is rapidly growing to meet this challenge. One of the most immediate needs is senior-level DevSecOps Engineer who can craft globally scalable and secure solutions that will drive the next generation of their business.

Responsibilities include:
Collaborate with similar-minded technology enthusiasts by providing security insights in systems architecture design

Work diligently to inject security practices into the software delivery life cycle while maintaining a rapid pace of developer productivity

Analyze security threat vectors early the development process

Actively analyze and manage issues on our platform before they impact customers

Be a key player in improving operational maturity though producing long term fixes from issues identified from on-call rotation

Partner with internal security teams to align DevSecOps practices and jointly maintain the company’s industry-leading privacy and security standards

A BS degree in Computer Science or related field, or equivalent work experience

5+ years with cybersecurity in cloud environments

Experience with standards and compliance (HIPAA, ISO-27002, PCI, NIST, GDPR, CCPA)

Previous experience leading application threat modeling and vulnerability assessments for distributed systems

Comfort with securing a production container ecosystem (Docker, EKS, Fargate/ECS, Kubernetes, service discovery, service registry) in a continuous delivery environment

A proven track record of securely architecting and owning cloud platforms such as (AWS, GCE, Azure) using Infrastructure as Code techniques

Experience with running security tools such as vulnerability scanners and static code analyzers

Programming and scripting fundamentals (Python, Javascript, etc.)

The ability to solve problems by working with team members to resolve large scale production issues

Hands-on technical skills in modern application deployment, NoSQL databases, content delivery networks, web application firewalls, network analysis tools, and other distributed systems technologies