DevSecOps Engineer II

Summary

Our organization is actively recruiting highly qualified professionals from various regions of the United States. This is a remote position.

We are seeking a highly skilled DevSecOps Engineer II to join our Information Security team. As a DevSecOps Engineer II, you will be responsible for developing and maintaining our Infrastructure as Code (IaC) pipelines on AWS and Azure. You will work closely with our development and security teams to ensure that our infrastructure meets the highest standards of security and compliance.

The ideal candidate must have hands-on experience with security engineering tasks in DevSecOps workflows. This includes maintaining security controls implemented in the software development lifecycle and collaborating with developers to ensure that security is built into the code by ensuring the continued functionality of linting tools and related policies. They should also be proficient in maintaining Terraform IAC (Infrastructure as Code), as well as scripts in Python, Bash or Powershell that automate security tasks and improve efficiency.

Finally, the applicant must have excellent problem-solving skills, be detail-oriented, and have effective communication skills. They must be able to work independently and as part of a team, and be comfortable working in a fast-paced, dynamic environment.

Visa Sponsorship Available: No

Combination of Education and Experience will be considered. Must be authorized to work in the US as defined by the Immigration Act of 1986. Must pass a Criminal Background Check.

Education: Bachelor’s Degree in a relevant field. (Experience may be considered in lieu of degree.)

Certification: Technical certifications or equivalents.

Years of Experience:

1. Minimum five (5) years of supporting / implementing network security platforms & strategies.
2. Minimum three (3) years of experience in information security.
3. Thorough understanding of information security—capable of sharing best practices with other organizations.
4. Capable of ensuring uptime and reliability of information security systems.
5. Well-versed in one or more cloud service providers.
6. Ability to partner with cross-functional teams, communicating succinctly across all mediums.
7. Possess deep cybersecurity knowledge and the ability to integrate security practices into the development process.
8. Hands-on experience with security engineering tasks in DevSecOps workflows.
9. Strong knowledge and experience with Terraform Infrastructure as Code.
10. Capable of utilizing and maintaining popular code linting tools.
11. Strong knowledge of public and private cloud security constructs.
12. Skilled communicator with experience coaching junior engineers.
13. Familiarity with Amazon routing and load balancing technologies.
14. Experience with Cloud network resources.
15. Experience and proven ability to work under time constraints.

1. Develop and maintain Infrastructure as Code (IaC) pipelines on AWS and Azure.
2. Work closely with development and security teams to ensure that our infrastructure meets security and compliance standards.
3. Build and maintain automated security and compliance checks.
4. Develop and maintain monitoring and alerting systems.
5. Automate security response and remediation processes.
6. Protect the organization's systems, networks, and data through troubleshooting and maintenance of security measures.
7. Remain apprised of CSP best practices and share findings with teams.
8. Create and maintain scripts in Python, Bash or PowerShell to automate security tasks.
9. Utilize and maintain popular code linting tools.
10. Develop and maintain security policies and procedures for AWS IAM, Key Management, and Certificate Manager.
11. Monitor and maintain Cloudflare WAF.
12. Manage and configure AWS Guard Duty.
13. Work with SIEMs to ensure logs are captured and analyzed.
14. Use Terraform IAC to create and manage AWS infrastructure securely.
15. Write Python scripts to automate security tasks.
16. Use Checkov IAC Linting for compliance with security best practices.
17. Create and manage AWS Lambda functions for automation.
18. Configure AWS Event Bridge and CloudWatch for monitoring and alerts.
19. Collaborate with the team on Github pull requests and troubleshoot actions.
20. Troubleshoot AWS Network Infrastructure.
21. Advise on network protocol, operating system, and cryptography.
22. Maintain security controls and integrate technologies into IT systems.
23. Deploy AWS security measures and conduct regular assessments.
24. Debug Terraform & CloudFormation builds.
25. Deploy measures to protect data on public clouds.
26. Deploy identity and access management roles.
27. Work effectively in an Agile Scrum workflow.
28. Provide advanced support for complex information security issues.
29. Document components of the information security systems.
30. Model customer service standards.
31. Other duties as assigned.

The Physical Demands and Work Environment described here are representative of those that must be met by a Team Member to successfully perform the essential functions of the role. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the role.

Office/IT - While performing the duties of this job, the Team Member is regularly required to stand, sit, talk, hear, see, reach, stoop, kneel, and use hands and fingers to operate a computer, keyboard, printer, and phone. May be required to lift, push, pull, or carry up to 50 lbs. May be required to work various shifts/days in a 24-hour situation. Regular attendance is a requirement of the role. Exposure to moderate noise (i.e. business office with computers, phones, printers, and foot traffic), temperature and light fluctuations. Ability to work in a confined area as well as the ability to sit at a computer terminal for an extended period. Some travel may be a requirement of the role.

We welcome all individuals from varied backgrounds and experiences to apply. Our company values the unique perspectives and talents that each person brings to our team.

Equal Opportunity Employer: Disability/Veteran

For more information, see https://allegiantair.jobs

• Profit Sharing
• Medical/Dental/Vision/Life/ Disability Insurance
• Medical Travel Reimbursement
• Legal, Identity and Pet Insurance
• 401K with an employer match
• Employee Stock Purchase Plan
• Employee Assistance Program
• Tuition Reimbursement
• Flight Benefits
• Paid vacation, holidays, and sick time

• Profit Sharing
• Medical Travel Reimbursement
• Legal, Identity and Pet Insurance
• 401K with an employer match
• Employee Stock Purchase Plan
• Employee Assistance Program
• Tuition Reimbursement
• Flight Benefits
• Sick time