Security (DevSecOps) Engineer
Security
Centennial Colorado Direct Hire Apr 6, 2022

As a trusted partner, Converge Technology Solutions is helping our client identify, screen and secure a Security (DevSecOps) Engineer to join their team in Denver, CO. This is a hybrid role initially, with 1-2 days onsite needed to establish rapport with the CISO.

The Information Security Department serves as the process owner for all activities related to availability, integrity, and confidentiality of customer, employee, and business information in compliance with the various financial institutions’ information security policies and procedures. In this role, you will carry out the responsibilities of the position in accordance with the company’s Information Security Policies and Procedures.  You will work closely with the Development Operations team to ensure continuous integration of security best practices into all phases of the Software Development Life Cycle (SDLC).

High-level Responsibilities:

  • Tightly integrate security tools and processes throughout the DevOps pipeline
  • Automate core security tasks by embedding security controls early on in the software development lifecycle
  • Continuously monitor and remediate security defects across the application lifecycle, including development and maintenance.
  • Support and manage application security tasks, to include testing and deployment
  • Support and manage web application security tasks, to include testing and deployment
  • Process management - Ensure adherence to the organization's SDLC development process
  • Assist Development teams with source code management (organization and structure)
  • Assist with distributed source control systems
  • Ensure the SDLC environmental changes are versioned and synchronized for repeatable functionality
  • Perform assessments, develop and/or improve build and release strategies
  • Define, document, coordinate, execute and validate application of SCM methodologies
  • Develop and maintain deployment and release structures
  • Develop SDLC strategies for software control to fit best practices, standards and business objectives
  • Assist in managing deployments, security, and support of business solutions.
  • Manage internal customer relationship management and problem and incident management for applications and web applications

Qualifications:

  • Bachelors’ degree in computer science, information systems, computer engineering, information security, or equivalent experience.
  • A combination of at least 2-4 years of experience in Security and DevOps.
  • Prior experience supporting CI (Continuous Integration) environment utilizing (TFS, Jenkins, Git, etc.)
  • Prior experience supporting CD (Continuous Delivery) environment utilizing (Octopus, GitLab, Ansible, Puppet, etc.)
  • Prior experience providing Software Development Life Cycle support
  • .Net, C# and JavaScript development experience is nice to have, but not required
  • Knowledge and understanding of Veracode or similar tools
  • Understanding and working knowledge of cloud development and cloud security
  • Ability to provide remediation coaching and guidance on security-related code defects

 

Converge Technology Solutions offers equal opportunity to employees and applicants regardless of race, color, creed, sex, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, sexual orientation or any other consideration made unlawful by federal, state, or local laws. Converge Technology Solutions does not accept unsolicited resumes from third-party vendors associated with fees.