Manager, DevSecOps (Remote)

Company: Presidio
Location: Not Specified, California, United States
Type: Full-time
Posted: 12.JAN.2021

Summary

Presidio is hiring a Manager, DevSecOps who will focus on building teams and systems which enable organizations to create cloud-native appli...

Description

Presidio is hiring a Manager, DevSecOps who will focus on building teams and systems which enable organizations to create cloud-native applications. A successful candidate will join our team working directly with clients and enabling software engineering and DevOps teams by building the platforms they need and training them how to use them. Candidates must possess a strong working knowledge of the AWS platform, DevOps tooling, cloud-native development patterns, and conventions, and be able to coach organizations through the end-to-end lifecycle of microservices.Role Description:Mentor, manage and help build a team of engineers while leading paid engagementsProtect assets spanning across infrastructure, platform, CI/CD pipelines and applicationsApply Security-as-Code principles across the board to improve the security of the client's product suite and provide training, mentoring, and best practices to the teamsDesign and implement mechanisms that efficiently identify and mitigate security risks within the existing DevOps workstreamsArchitect and design API Security, Container Security, CI/CD Pipeline Security, or AWS Cloud SecurityEnforce and govern the use of API security, container security, and cloud security, while leveraging automation across the lifecycleImplement security features and monitoring tools, performing periodic security assessmentsDeploy and administer security monitoring tools for the SecOps team, and perform frequent risk assessmentsRespond swiftly to new and emerging security threats and vulnerabilities, investigate suspected attacks and help manage security incidents including providing post-mortem analysis, identify causes, and developing solutions and preventive measuresDevelop the automation of security and compliance capabilities in support of DevOps processesInstill and foster uptake ofDevSecOpspractices through meaningful engagement with the DevOps/Client teamsQualifications & ExperienceFamiliarity with all aspects of securityin regard toconsumer-facing applicationsExperience with Docker and KubernetesExperience working with and securing Public Cloud (AWS), distributed and highly available systemsSolid understanding of networking and RDBMS/Database technologies (Postgres, MySQL, RDS, Redshift)Expert knowledge in AWSStrong grasp of infra-as-a-code and configuration tools, e.g.: Terraform, Ansible/ChefStrong Linux administration and scripting experienceMinimum of 4 years supporting production environmentsUnderstanding and practice with at least one compliance framework (PCI. HIPPA, etc.)Comfortability working independently and as a team in lean DevOps culturesExperience in requirements identification, solution analysis/testing, and product selectionExcellent communication and presentation skillsKnowledge of the DevOps culture and principlesUnderstanding of programming languages such as Ruby, Java, Python, and PHPStrong teamwork and communication skillsKnowledge of threat modeling and risk assessment techniqueUp-to-date knowledge of cybersecurity threats, current best practices, and latest softwareUnderstanding of programs such as Ansible, Puppet, Chef, Aqua,Twistlock, and ProwlerUnderstanding of AWS Services such as CloudWatch, CloudTrail, and Security HubPreferred Qualifications:AWS Certified Solutions Architect AssociateAWS Certified Security SpecialtyOne or more recognized security certifications, e.g., CCSP, SSCP, CISSP, CCSKDevSecOpsPhilosophy mirrors that of theDevSecOpsManifesto:Through Security as Code, we have and will learn that there is simply a better way for security practitioners, like us, to operate and contribute value with less friction. We know we must adapt our ways quickly and foster innovation to ensure data security and privacy issues are not left behind because we were too slow to change.Leaningin overAlways Saying "No"Data & SecurityScience overFear, Uncertainty, and DoubtOpen Contribution &Collaboration overSecurity-Only RequirementsConsumable Security Services withAPIs overMandated Security Controls & PaperworkBusiness Driven SecurityScores overRubber Stamp SecurityRed & Blue Team Exploit Testing overRelying on Scans & Theoretical Vulnerabilities24x7 Proactive SecurityMonitoringoverReacting after being Informed of an IncidentShared ThreatIntelligence overKeeping Info to OurselvesComplianceOperations overClipboards & Checklists*****ABOUT PRESIDIOPresidio is a leading North American IT solutions provider focused on Digital Infrastructure, Cloud and Security solutions to create agile, secure infrastructure platforms for its customers. We deliver this technology expertise through a full life cycle model of professional, managed, and support services including strategy, consulting, implementation and design. By taking the time to deeply understand how our clients define success, we help them harness technology advances, simplify IT complexity and optimize their environments today while enabling future applications, user experiences, and revenue models. As of June 30, 2019, we serve approximately 7,900 middle-market, large, and government organizations across a diverse range of industries. Approximately 2,900 Presidio professionals, including more than 1,600 technical engineers, are based in 60+ offices across the United States in a unique, local delivery model combined with the national scale of a $3.0 billion dollar industry leader. We are passionate about driving results for our clients and delivering the highest quality of service in the industry. For more information visit: Infrastructure:Our Digital Infrastructure solutions help make existing IT infrastructure more efficient, while equipping our clients for a cloud-flexible, mobile-ready, highly secured, insight-driven future. Given the millions of potential configurations across these technologies, our clients rely on our expertise to simplify a highly complex IT landscape, helping to identify and deploy the solutions most appropriate for their business needs. Our Digital Infrastructure solutions scale from workgroup to the largest enterprise requirements.Cloud:We help our clients take cloud strategy and adoption to the next level. Through our advanced cloud solutions practice, combined with Presidio's IT infrastructure expertise, we provide private, hybrid, and multi cloud solutions. By closely aligning our services and solutions with our strategic partners Microsoft Azure™, Amazon Web Services™, Intel®and VMware™ Presidio offers cloud strategy, architecture and implementation services along with application rationalization and migration across the hybrid and multi-cloud data center environment. In addition, our new and innovative Presidio Cloud Concierge solution provides a foundation for Automation and Self-Services across Clouds to improve productivity and drive increased levels of governance and security.Rather than a "one size fits all" approach, or having to choose between public or private, Presidio tailors a hybrid cloud strategy to meet your unique business requirements. We help our clients accelerate and simplify cloud adoption across the entire IT lifecycleSecurity:Our comprehensive security risk methodology gives customers the ability to safeguard their environments and critical business data. This includes continuous threat protection and risk mitigation through the Presidio Cyber Risk Management program, a next generation approach that integrates security strategy, assessments, architecture and remediation, and aligns all of these with organizational goals.Presidio Cyber Risk Management provides clients with a holistic approach for effective security policies and procedures, risk assessment and management, regulatory compliance, incident response, and education and awareness. We use an established risk management methodology and proprietary risk scoring process to provide the IT leader and board of directors with an ongoing view of their organization's risk exposure and remediation path.Emerging Technology:Emerging technologies such as IoT, blockchain and artificial intelligence continue to disrupt current business models, and customers are faced with the task of transforming their organizations to achieve desired outcomes. Increased demand for operational efficiencies, better customer experience and improving safety and security has taken priority. This accelerated rate of change is prompting businesses to align their processes, applications and infrastructure to new consumption and service-based models. For our customers, it means enabling a seamless exchange of data within complex ecosystems to help advance digital transformation.At Presidio Emerging Technologies, we provide solutions for safety and security, mobile and wireless communications, data collection and analytics using purpose-built, ruggedized hardware and software. Presidio offers validated solutions forIndustrial Insights,Connected Transportation,Smart Cities, andSafer Schools.*****Presidio is an Equal Opportunity / Affirmative Action Employer / VEVRAA Federal Contractor. All qualified candidates will receive consideration for this position regardless of race, color, creed, religion, national origin, age, sex, citizenship, ethnicity, veteran status, marital status, disability, sexual orientation, gender identification or any other characteristic protected by applicable federal, state and local statutes, regulations and ordinances.To read more about discrimination protections under Federal Law, please visit: (Get Acrobat Reader)If you have any difficulty using our online system and need an accommodation in the job application process due to a disability, please send an email to for assistance.Presidio is a VEVRAA Federal Contractor requesting priority referrals of protected veterans for its openings. State Employment Services..... click apply for full job details

 
Apply Now

Share

Free eBook

Flash-bkgn
Loader2 Processing ...