Security DevOps Engineer

Skills

· 7+ years of automation and IT experience. 2+ years in DevOps and cloud experience · Strong programming skill with experience in API and Webhook development using Python Powershell and Rego. · Experience with automating and integrating serverless PaaS solutions in Azure and GCP platforms. · Deep knowledge of Container security and orchestration · Experience with compliance and application security tools · Understand Cloud (Azure/ GCP) security features (data protection IAM network security compliance frameworks) · Ability to troubleshoot Network DNS Firewall and routing · Understand develop concepts related to deploying services via CI/CD pipeline · Creation of automated workflows using Terraform and GitHub actions

Description

We are looking for a Security DevOps Engineer to work across multiple diverse businesses within TD to deliver enterprise capabilities and solutions in our cloud environments. The perfect candidate will have previous public cloud experience delivering enterprise solutions within financial services including knowledge of the security and regulatory requirements.

As a Security DevOps Engineer, you will work in collaboration with cloud engineering, network, security and risk management to deliver bank secured cloud solutions that meet security policies and standards within TD. You will collaborate with developers in our cloud engineering team and lines of business to implement and continuously improve the framework and tools to support self-service automation of the platform. You will develop custom code in Jenkins, Groovy, Python and Powershell to automate build and automate testing for the platform.

You will have a strong passion for writing code to automate and integrate technologies and eliminate manual steps. You will also have a strong passion for delivering automated security products in cloud environments. You will agile JIRA tools to manage a backlog of enhancements and bug-fixes. You will also develop automated integration tests to run on our enterprise deployment platform for test automation to help support bug free releases.

Responsibilities

• · Ensure that all cloud solutions follow internally defined security and compliance controls
• · Implement the enterprise cloud capability and enhance the cloud orchestration platform for automated provisioning, management and scalability of hosts, containers, applications, and cloud services (AquaSec, Wiz.io, Defender, Sentinel, Google Chronicle, Splunk, Etc)
• · Develop APIs and Webhook for multi-directional integration of cloud orchestration platform with system management systems, DevOps Tools and cloud platforms
• · Data transformation and reporting for security compliance KPI/ KRIs
• · Integration of security tooling in enterprise deployment pipelines for developer feedback and runtime governance
• · Integration of security reporting with SIEM and incorporation with Enterprise Monitoring procedures
• · Ability to participate in fast-paced DevOps Engineering teams within Scrum agile processes
• · A critical thinker with strong research and analytics skills
• · Self-motivated with a positive attitude and an ability to work independently and or in a team
• · Able to work under tight timeline and deliver on complex problems