United States onlyKnowledgeCity is seeking a DevSecOps Engineer to join their team. As a DevSecOps Engineer, you will be responsible for integrating security tools into CI/CD pipelines, designing secure configurations for cloud infrastructure, and implementing security controls and standards for containerized applications in Kubernetes.
Requirements
- Strong experience in DevOps and security tools and technologies
- Deep understanding of DevSecOps methodologies and practices
- Proficiency in security tools and platforms such as SonarQube, Trivy, Burp Suite, GuardDuty, AWS WAF, and ELK Stack
- Advanced knowledge of application security, secure coding practices, and vulnerability management
- Familiarity with Infrastructure as Code (IaC) tools like Terraform and CloudFormation
- Experience with programming and scripting languages such as Python, Shell, or similar alternatives
- Hands-on experience with security analysis tools for SAST, DAST, and SCA
- Expertise in penetration testing, incident response, and cloud security auditing
- Strong understanding of cryptography, identity management, and secure access control
- Analytical and troubleshooting skills to resolve complex security issues
- Ability to perform threat modeling and risk assessment to identify potential security gaps and define effective solutions
- Excellent communication skills with the ability to collaborate effectively across technical and non-technical teams
- Strong documentation skills to support security policy development and incident response procedures
