Share this Job

DevSecOps Engineer

Apply now »

Date: Apr 25, 2022

Location: Remote, US Remote, US Remote, US

Company: Aspect Software Inc

Alvaria employs a team of passionate individuals who are changing the face of customer engagement.  Over our 40-year history we have empowered  employees by creating an inspired community that values Urgency, Accountability and Results.  Our ability to think big has enabled us to continually evolve and lead the market, and to stay on the forefront with exciting technologies including cloud, mobile and artificial intelligence.

 

Job Description

Alvaria employs a team of passionate individuals who are changing the face of customer engagement.  Over our 40-year history we have empowered  employees by creating an inspired community that values customer obsession, unlocked communications and relentless innovation.  Our ability to think big has enabled us to continually evolve and lead the market, and to stay on the forefront with exciting technologies including cloud, mobile and artificial intelligence.

Major Duties Include:
•    Designing, implementing and overseeing security testing procedures to verify the security of systems, networks and applications, and manage the remediation of identified risks
•    Being a part of the Incident Response team and perform security incident response and investigations in a timely manner including but not limited to abnormal behavior and policy violations
•    Representing the security team as a contributing member in non-security related projects
•    Testing compliance of systems and environments with security policies
•    Performing administration of security related tooling
•    Security control automation and auto remediations such as CIS hardening standards
•    Creating high level and detailed security documentation including requirement definitions, risk assessments, architecture diagrams, information flows
•    Tuning of various security tools such as anti-virus software, intrusion detection, firewall ACLs, content filtering and file integrity monitoring in a multi-cloud hybrid enterprise environment 
•    Performing trend analysis and report common issues to management and propose process and technical improvements.
•    Independently provide solutions for minor system and network issues
•    Ability to communicate security issues to peers and non-technical audience
•    Ability to read, analyze and use the results of in-house developed code, malicious code, and SIEM logs
•    Performing maintenance after hours and in change windows and be available for after hours for emergency security response or support
•    Assisting in process automation and optimization

Qualifications

Basic Qualifications
•    Minimum of 5 years of professional Information Security engineering experience required.
•    Strong proficiency with Linux, CentOS, Windows Server, Active Directory, and SQL/NoSQL Database technologies.
•    Hands on experience with AWS & Azure, public and private cloud infrastructure is required.
•    Proven ability in automation with: Ansible, Chef, Terraform, Jenkins, and Rundeck
•    Working knowledge and experience with CI/CD pipelines, Kubernetes, Docker, Git, and Jenkins
•    Solid experience with firewall technologies and encryption methodologies 
•    Exceptional ability in Security engineering: Secure cloud deployments, network ACLs, Access control (AWS IAM, Azure AD, Active Directory, RADIUS), PKI, Managing hybrid cloud infrastructure
•    Experience with writing scripts in one or more of the following languages: Node.js, Perl, Ruby, Python, Go, Powershell, Bash
•    Knowledge of disaster recovery, computer forensic tools, technologies and methods
•    Ability to think critically
•    Ability to collaborate with highly technical and non-technical teams
 
Desired Skills
•    Bachelor’s degree in cyber security, Computer Information Systems, Computer Science, Information Systems Management.
•    Familiar with vulnerability management process, vulnerability analysis, penetration testing, threat modeling, and application security
•    Experience with Incident response, incident handling, active adversary threat management, and intrusion detection
•    Familiarity with CIS hardening guidelines (AWS, Azure, Databases, Linux, Windows, Networking)
•    Solid working knowledge of Security Technologies including host and network-based protection and detection technologies, SIEM, WAF, Anti Virus, File Integrity Monitoring. 
•    Knowledge and experience with network, host and application security best practices.
•    Knowledge of using Packet Capture tools and analysis to define secure network architecture 
•    One or more of the following Security Certifications preferred: OSCP, CSIS, CEH, CSTA, CSTP, GCFE, CISSP, GCIH, GCIA, GPEN, AWS Certified Security, Azure Security Engineer Associate. 
•    One or more of the following vendor certifications preferred: RHCSA, RHCE, RHCA, MCSA, MCSE
•    Experience with PCI, SOC II type 2, and/or ISO 27001 audit cycle.
•    ITIL experience or certification is a plus.
•    Proficiency with virtualization solutions


#LI-JL1

#LI-Remote

Alvaria is an equal opportunity/affirmative action employer with a strong commitment to diversity. In that spirit, we are particularly interested in receiving applications from a broad spectrum of people, including women, minorities, individuals with disabilities, veterans or any other legally protected group.


Nearest Major Market: Eugene