DevSecOps Engineer

London

£75,000 - £85,000

Job Description

We are looking for a DevSecOps Engineer to help drive innovation and implement fit for purpose solution that will underpin our strategic technical platform.  This role will involve working across multiple teams to understand security requirements and progressively align our products and services to regulatory/compliance requirements and cyber security best practices.

This role will require a person that is comfortable researching, implementing, mentoring, and presenting ideas and opportunities across teams in multiple locations globally.

What you'll do

·        Develop software and infrastructure security best practices and implementations.

·        Outline and craft a comprehensive security profile to align Aristocrat products with regulatory compliance requirements.

·        Work directly with corporate InfoSec to ensure synergy and alignment with global security needs.

·        Perform complex analysis, consulting and providing recommendations to internal clients.

·        Define technical product requirements and create high-level architectural specifications, ensuring feasibility, functionality, and integration with existing systems/platforms.

·        Provide designs/blueprints and technical leadership to development and DevOps teams.

·        Review current system security measures, recommend, and implement enhancements.

·        Solid understanding of security protocols, cryptography, authentication, authorization, and security.

·        Experience implementing multi-factor authentication, single sign-on, identity management or related technologies.

·        Performs other duties as assigned.

What we're looking for

·        Bachelor’s degree in computer science, information systems management or related field.

·        A strong background in DevOps, DevSecOps, working as a DevSecOps Consultant, Engineer, Architect or similar.

·        Expert level of Cyber Security experience.

·        Expert level of software security and development practices and implementations.

·        Expert level knowledge and experience of Kubernetes, on-prem and on cloud providers.

·        Proven track record creating a common architecture vision and implementing the strategic alignment across multiple teams.

·        5+ years of demonstratable and significant experience of implementing Docker and Kubernetes in an enterprise environment.

·        Strong background on working with source code repository for 10+ years.

·        Should have experience with tools like Jenkins, InstallShield, SonarQube, JFrog etc.

·        Experience with design of proactive security for Micro Services.

·        5+ years of experience of delivering CI/CD pipelines to automate everything.

·        Strong interpersonal, verbal, and written communication skills, with the ability to develop and conduct presentations to peers and management teams.

·        Self-directed with the ability manage own work and life balance.

·        Preferred security certification such as CISSP, CEH, OSCP.

·        Preferred experience in managing bug bounty programs.