a-place-for-mom - Staff DevOps Engineer
Upload My Resume
Drop here or click to browse · Tap to choose · PDF, DOCX, DOC, RTF, TXT
Requirements
• You are an experienced and results-oriented Staff DevOps Engineer - Security who can work cross-functionally to develop and implement security improvements and safeguards which will protect A Place for Mom’s assets, employees, and customers. • Strong knowledge and 5+ years’ experience in Computer Science, Information Security, or related field (or equivalent work experience). • TCP/IP and other network protocols • Computer systems and their security functions including authentication, access control, and auditing • Securing Windows and Linux-based environments • CI/CD pipelines using GitHub, familiarity with IAC tools like Terraform • AWS Containerization like Fargate • Entry point tools and applications such as firewalls, WAF, CDN, APIs • Endpoint solutions such as Anti-virus software and intrusion detection, and encryption • In depth knowledge of AWS environments and their security services • Scripting with Powershell, Bash, AWS CLI, Cloudformation and Terraform • Managing Security tools: such as MFA, SIEM, Auditing, Security Training, Risk Registry • Strong understanding of Security frameworks such as NIST, ISO • Strong understanding of application security, including secure coding practices, OWASP Top 10, and vulnerability assessment tools (e.g., Snyk, Veracode, Burp Suite), and be able to provide recommendations over time. • Strong problem-solving skills and ability to communicate complex security issues to both technical and non-technical stakeholders. • Ability to work independently, as a team member, or under the direct supervision of a company leader. • Additional recommended skills/education: • Ability to work independently, as a team member, or under the direct supervision of a company leader • Practical experience implementing a zero trust environment • Experience with penetration testing, and replication of the finding independently • Bachelor’s degree in IT • CISSP/CISA/Security+/Network +/CWAPT/OSCP/CEH or other security certification is a plus.
Responsibilities
• Incorporate A Place for Mom Values into each customer and co-worker interaction. • Perform configuration, network, and application technical vulnerability assessments, identify vulnerabilities, validate their relevance, and work with teams to remediate them. • Design and implement security solutions across infrastructure and applications to ensure "secure by default" principles are followed. • Monitor, analyze, and respond to alerts from automated logging and monitoring tools, including AWS Security Hub, AWS Systems Manager, Cisco Duo Security, Endpoint protect and Security Information and Event Management (SIEM) tools, like Alert Logic or Rapid7, including collaborate with DevOps teams to automate security practices, integrating security controls and checks into CI/CD pipelines • Respond to security related requests, events, and incidents; perform triaging and investigation as needed; and provide the fixes as appropriate • Analyze security threats, vulnerability assessments, and audit results to identify the root cause and recommend or implement security solutions that enable business objectives. • Lead the development and enforcement of security standards, policies, and procedures, ensuring alignment with industry best practices. • Collaborate with other teams to support response efforts to security-related findings or concerns and drive to resolution. • Analyze mean time to remediation, incident response times, and other security metrics and provide assessment reports. • Develop and maintain automated security testing and scanning tools to detect vulnerabilities during the development lifecycle. • Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions and improved security processes. • Evangelize a culture of security to the rest of the company through education, support, and empathy, fostering a culture of security awareness • Stay up-to-date on the latest security threats, vulnerabilities, and trends, proactively recommending improvements to security posture.
Benefits
• $150K – $170K • Offers Bonus • Bonus: 10% of Annual Earnings • Upload your resume here to autofill key application fields. • Drop your resume here! • Parsing your resume. Autofilling key fields... • or drag and drop here • Decline to self-identify • Hispanic or Latino - A person of Cuban, Mexican, Puerto Rican, South or Central American, or other Spanish culture or origin regardless of race. • Hispanic or Latino • White (Not Hispanic or Latino) - A person having origins in any of the original peoples of Europe, the Middle East, or North Africa. • White • Black or African American (Not Hispanic or Latino) - A person having origins in any of the black racial groups of Africa. • Black or African American • Native Hawaiian or Other Pacific Islander (Not Hispanic or Latino) - A person having origins in any of the peoples of Hawaii, Guam, Samoa, or other Pacific Islands. • Native Hawaiian or Other Pacific Islander • Asian (Not Hispanic or Latino) - A person having origins in any of the original peoples of the Far East, Southeast Asia, or the Indian Subcontinent, including, for example, Cambodia, China, India, Japan, Korea, Malaysia, Pakistan, the Philippine Islands, Thailand, and Vietnam. • Asian • American Indian or Alaska Native (Not Hispanic or Latino) - A person having origins in any of the original peoples of North and South America (including Central America), and who maintain tribal affiliation or community attachment. • American Indian or Alaska Native • Two or More Races (Not Hispanic or Latino) - All persons who identify with more than one of the above five races. • Two or More Races • Hispanic or Latino • White (Not Hispanic or Latino) • Black or African American (Not Hispanic or Latino) • Native Hawaiian or Other Pacific Islander (Not Hispanic or Latino) • Asian (Not Hispanic or Latino) • American Indian or Alaska Native (Not Hispanic or Latino) • Two or More Races (Not Hispanic or Latino) • I identify as one or more of the classifications of protected veteran listed above • I am not a protected veteran
No credit card. Takes 10 seconds.