Senior DevOps Engineer at SimCorp managing cloud environments and automating builds using Azure. Collaborating with cross - functional teams to ensure high service availability and compliance.
About the role
- DevSecOps Engineer designing secure cloud infrastructure at CredLens, ensuring best practices in security throughout the development lifecycle. Collaborating with engineering and data teams on dependability and compliance.
Responsibilities
- Act as a subject matter expert in securing Infrastructure as Code (IaC), with a primary focus on the AWS Cloud Development Kit (CDK).
- Support and secure our AWS environments by managing and implementing AWS security tooling, including but not limited to AWS Security Hub, Inspector, GuardDuty, AWS WAF, CloudTrail, and others.
- Manage and mature IAM Roles and groups, leveraging Access Analyzer, with a focus on advancing an identity and zero trust model.
- Lead security application development efforts by implementing and managing security testing tools such as SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing).
- Focus on providing architectural guidance and solutions for secure product development.
- Proactively classify, triage, and manage security vulnerabilities and risks, providing clear, actionable remediation guidance to development teams.
- Act as a subject matter expert, providing actionable recommendations to development teams and assisting with the remediation of security findings.
- Assist teams in securing infrastructure code, with a specific focus on the AWS Cloud Development Kit (CDK).
- Serve as a backup/on-call resource to support and secure our AWS environments.
- Support and secure the delivery pipeline using AWS CodePipeline and GitHub.
- Participate in incident detection and threat response activities, helping to identify, contain, and remediate security incidents.
- Work with SIEM solutions, manage log ingestion and tuning, and actively respond to security alerts and findings.
- Collaborate with engineering teams to design and validate Identity and Access Management (IAM) models for third-party partners and vendors, ensuring least-privilege access to CredLens data assets.
- Assist in translating technical security controls into a non-technical context for audit reporting and stakeholder communication.
- Support audit and compliance activities for security frameworks such as SOC 2 Type II, ISO 27001, and NIST 800-53, by helping to collect evidence and validate control effectiveness.
Requirements
- Proven Seniority: This is not a junior-level role; you have a 5+ year track record of success in DevSecOps, Cloud Security, or Security Engineering.
- AWS Expertise: Deep, hands-on experience with AWS security services and cloud best practices.
- Security as Code: Proficiency in Infrastructure as Code (IaC) principles; experience with AWS CDK is a plus, but a willingness to master it is essential.
- Automation Mindset: Strong scripting and automation skills used to manage vulnerabilities and security testing.
- Compliance & Frameworks: A solid understanding of frameworks like SOC 2 Type II, ISO 27001, or NIST 800-53. You can translate these technical controls into clear context for audit reporting.
- Audit Readiness: Experience leading evidence collection and supporting external auditors during security assessments.
- We prioritize your ability to problem-solve, collaborate, and ensure quality over traditional academic milestones. While a degree in Computer Science or Information Security is welcome, we place higher value on practical, real-world experience and proven industry credentials such as those from ISC2 (CISSP or CCSP), CompTIA Security+, or AWS Certifications (Security or DevOps Specialty).
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
DevOps Senior Software Engineer at SimCorp developing high - quality software solutions for financial technology. Responsible for mentoring junior engineers and solving complex technical challenges.
DevOps Engineer designing, building, and operating software development infrastructure for CodeMettle. Leading automation and best practices to enhance value delivery across teams.
DevOps Engineer maintaining scalable infrastructure for VOX's telecom services. Implementing automation and CI/CD pipelines in a fast - paced environment with significant growth potential.
DevOps Engineer focused on designing and managing CI/CD pipelines using Azure DevOps. Collaborating with teams for application deployment and ensuring DevSecOps practices.
DevOps Engineer working closely with engineering and security teams to optimize CI/CD pipelines and manage infrastructure. Ensuring security and compliance for mission - critical financial applications.
Build and scale cloud infrastructure that powers Heidi's healthcare AI platform. Work with AWS and Azure while enhancing automation and reliability in an innovative healthtech startup.
Infrastructure - as - Code DevOps Engineer designing and managing cloud - native platforms at Vodafone. Collaborating with agile teams for digital transformation and business success.
Director of Data Engineering leading a strategic DevOps team within Enterprise AI. Balancing leadership with hands - on expertise to enable AI technology adoption.
Join a Data Engineering Team as a Senior DevOps to support multiple Data & AI initiatives. Utilize cloud technologies and enhance data pipelines in a collaborative environment.