Jobs

    DevSecOps Engineer - Hyderabad, India - Foundation AI

    Foundation AI
    Foundation AI Hyderabad, India

    1 week ago

    Default job background
    permanent Technology / Internet
    Description

    About the Role :

    As a DevSecOps Engineer at Foundation AI, you'll lead efforts to enhance security for infrastructure and products. You'll need technical expertise in identifying and addressing security vulnerabilities, ensuring compliance, and integrating security best practices across the development lifecycle. Your role also involves collaborating with cross-functional teams to embed security throughout the development process.

    Responsibilities :

    Work Location Commitment :

    As a DevSecOps Engineer, you'll be expected to work from our office in Hyderabad. This reflects our preference for in-person collaboration and a commitment to team cohesion.

    Rich Industry Experience :

    You should possess a substantial 3-6 years of experience in DevSecOps and DevOps & should have worked for product-based companies (Startup/Scaleup). This extensive experience underscores your ability to navigate complex DevsecOps challenges effectively.

    Infrastructure as Code (IaC) Security :

    Ensuring that application configurations are secure and compliant with security policies. Performing security checks on infrastructure code (e.g., Terraform, CloudFormation) to ensure that resources are provisioned securely.

    Operating System Expertise :

    Your command over operating systems is particularly vital, with a strong emphasis on Linux. This expertise ensures a solid foundation for managing and optimizing system-level operations.

    DevSecOps Methodology :

    By incorporating security into the DevOps workflow, DevSecOps aims to identify and mitigate security vulnerabilities more effectively, reduce the risk of security breaches, and accelerate the delivery of secure software.

    Static Application Security Testing (SAST) :

    Scanning the code for security vulnerabilities using tools like SonarQube, Checkmarx, or Fortify as part of the build process.

    Dynamic Application Security Testing (DAST) :

    Conducting security testing on running applications to find vulnerabilities that attackers can exploit. Tools like OWASP ZAP or Burp Suite can be integrated into the pipeline.

    Effective Communication and Collaboration :

    Exceptional communication and collaboration skills are essential. You'll work closely with cross-functional teams, bridging the gap between development and operations, and ensuring smooth coordination.

    Cloud-Native Proficiency :

    Knowledge of security tools specific to cloud-native environments, such as container security scanners, cloud security posture management (CSPM) tools, and cloud workload protection platforms (CWPP).

    Understanding Distributed Computing :

    A solid grasp of Distributed Computing principles is fundamental. It enables you to design and implement systems that can handle complex, distributed workloads effectively.

    Coding Prowess :

    Your coding skills, particularly in Bash Shell Scripting and Python, will play a pivotal role. These skills empower you to automate tasks and develop tools to enhance system reliability and efficiency.

    Role :

    - Assist SDEs and DevOps teams on secure deployment and best practices.

    - Create a Knowledge base on security vulnerabilities and test cases.

    - Perform security testing on Web and Mobile assets through a checklist

    - Work closely with the Product team and SDE/QA to fix vulnerabilities/ issues faced by customers

    - Perform red team and phishing exercises to improve security posture

    - Assist/ mentor teammates on security test cases and day-to-day activities

    - Work on incident management and third-party security reports

    - Initiate and improve responsible disclosure/ Bug bounty program

    - Brown bag sessions and presentations to the tech team on security best practices and improvements

    - Work closely with business stakeholders and influence the security policy of the org

    - Good to have but not mandatory

    - AWS Security Speciality/ CEH/ OSCP/ CISSP/ CRTP/ CKA/ CKSS

    - Working knowledge of Kubernetes, and AWS architecture.

    - Worked with CSPM tools like Pingsafe/Wiz.

    - Comfortable implementing open-source security tools in the CI/CD pipeline.

    Qualifications :

    - Experience of 3-6 years

    - Minimum 1-2 years of experience in product security

    - You are a hands-on engineer who leads by doing.

    - Strong knowledge of OWASP Vulnerabilities.

    - Working knowledge of WAF rules to protect from DoS/DDoS attacks

    - Strong knowledge of SCA, SAST & DAST tools and their integration

    - Working knowledge of Git, Ansible, Kubernetes, Burpsuite

    - Understanding of AWS and Azure services.

    - Experience building CI/CD pipelines for container security.

    - Familiarity with Linux and Windows operating systems.

    Education :

    A BTech degree in Computer Science or equivalent experience relevant to the functional area.

    )
  • Swiss Re

    DevSecOps Engineer

    3 days ago

    Swiss Re Hyderabad, India

    About the Role: · As part of central DevSecOps team, design and implement solutions to address our infrastructure and security requirements. · Implement / maintain various customization for CI/CD platforms (Azure DevOps / GitHub Enterprise) and Build agent pools (Linux). · Impro ...

  • Swiss Re

    DevSecOps Engineer

    6 days ago

    Swiss Re Hyderabad, India

    About the Role: · As part of central DevSecOps team, design, assess and implement solutions to address our infrastructure and security requirements. · Design and implement various customization for CI/CD platforms (Azure DevOps / GitHub Enterprise) w.r.t Build agent pools managem ...

  • BreachLock Inc

    DevSecOps Engineer

    4 days ago

    BreachLock Inc Hyderabad, India

    About Breachlock · BreachLock is an Innovative Cybersecurity Company deploying new-age technology to make Cyberspace a safe place for everyone. · Recognized by Gartner as a key Cybersecurity Innovator 3 years in a row, BreachLock is a growth Scaleup with Offices in the US, Europe ...

  • BreachLock

    DevSecOps Engineer

    1 week ago

    BreachLock Hyderabad, India Full time

    About Breachlock · BreachLock is an Innovative Cybersecurity Company deploying new-age technology to make Cyberspace a safe place for everyone. · Recognized by Gartner as a key Cybersecurity Innovator 3 years in a row, BreachLock is a growth Scaleup with Offices in the US, Europe ...

  • Colaberry Private Limited

    DevSecOps Security Engineer

    5 days ago

    Colaberry Private Limited Hyderabad, India

    Job Description · We are seeking a highly skilled and experienced DevSecOps Security Engineer to join our IT Security team our client at Experian. The ideal candidate will have a strong background in AWS cloud security, automation, and continuous integration/continuous deployment ...

  • timesjobs

    DevSecOps Engineer

    1 week ago

    timesjobs Hyderabad/ Secunderabad, India Full time

    · Incorporate secure software development from architecture to deployment and maintenance based on DevSecOps framework. · Develop secure software development process and train the developers. · Design & implement secure software development life cycle solutions based on various ...

  • Alignity Solutions

    Azure DevSecOps Engineer

    5 days ago

    Alignity Solutions Hyderabad, India

    Doyou love a career where youExperienceGrow & Contributeatthe same time while earning at least 10% above the market If so weare excited to have bumped ontoyou. · Learnhow we are redefiningthemeaningofworkand be a part of the team raved by Clients Jobseekers andEmployees.Jobseeker ...

  • Swiss Re

    Senior DevSecOps Engineer

    1 week ago

    Swiss Re Hyderabad, India

    About the role: · You would be playing a key role in ensuring the reliability, stability, scalability and security of our Azure based RMIT application landscape. You will be monitoring, implementing, and testing highly automated solutions to shape the technology platform fulfils ...

  • Sdz Pvt Ind

    Assoc. Dir. Sol. Deliv. Cm Technologies

    2 days ago

    Sdz Pvt Ind Hyderabad District, Telangana, India

    **Job Description**: · 2023 will see Sandoz become a standalone organization As a global market leader in Generics and Biosimilar medicine, Sandoz is stepping forward from a position of strength Those joining Sandoz in the coming months will help shape the future of the company, ...

  • PepsiCo

    Architect -enterprise Solutions Mtd-eam

    1 week ago

    PepsiCo Hyderabad, India

    Overview: · The PGT MDG Specialist for Enterprise Asset Management (EAM) will be responsible for maintaining the functional and technical integrity of the PGT MDG (Master Data Governance) EAM Master Data Solution Extensions, as delivered by Utopia/Prometheus. This role will repor ...

  • Honeywell

    Advanced Cyb Sec Archt/engr

    1 day ago

    Honeywell Hyderabad, India

    **Design solutions to drive safe living and quality of life**: · **Innovate to solve the world's most important challenges** · Honeywell is a Fortune 100 company with global sales surpassing $40B and has been one of Fortune's Most Admired Companies for over a decade. Through inno ...

  • Experian

    QA Architect

    1 week ago

    Experian Hyderabad, Telangana, India

    Full-time · Employee Status: Regular · Role Type: Hybrid · Department: Product Development · Schedule: Full Time · **Company Description**: · Experian is the world's leading global information services company. During life's big moments — from buying a home or a car to sending a ...

  • Hitachi Vantara

    Azure Architect

    3 days ago

    Hitachi Vantara Hyderabad, India

    Hyderabad, India · **Function**: · Digital Modernization · **Requistion ID**: · 1023174 · **Job Type**: · Meet our Team · SHORT INTRO TO THE TEAM - SAMPLE BELOW · We represent Hitachi Vantara to enterprise clients across industries, establishing business relationships to understa ...

  • CIEL HR Services

    Sast, Dast

    5 days ago

    CIEL HR Services Telangana, India

    Hi, · Years of expereince: 10 · Description: · **Primary Skills** · - Expert in Dynamic Application Security Scan/Analysis (DAST) · - Expert in Static Application Security Scan/Analysis (source code review) (SAST) · - **Hands on experience of Synopsys Coverity, Burp suite Pro, Az ...

  • Sandoz

    Solution Eng

    1 week ago

    Sandoz Telangana, India

    **Major accountabilities**: · - Actively contribute to professional and reliable technology delivery for business systems, platforms, and processes for business domain/function(s) in scope. · - Actively contribute to on time, within budget, compliant, secure, and quality delivery ...

  • SID Global Solutions

    DevOps Engineer

    1 week ago

    SID Global Solutions Hyderabad, India

    Position: Sr. Devops Engineer – Hyderabad - Onsite · Work Mode: 5 Days Working from Office · Looking for a Talented DevOps engineer with a passion for automation, ready for an opportunity to tackle the complex problems of scale which are unique to Intuit while using your expertis ...

  • AppSierra Solutions Pvt Ltd

    AppSierra Solutions

    1 week ago

    AppSierra Solutions Pvt Ltd Hyderabad, India permanent

    Job Description : · We're seeking a DevSecOps Engineer to support our software development lifecycle, leveraging technical expertise to design and implement various CICD patterns while adhering to industry standards. · Responsibilities include active involvement in design and c ...

  • Head Digital Works

    Security Engineering Lead

    1 week ago

    Head Digital Works Hyderabad, India

    We are looking for an experienced and highly skilled Security Engineering Lead. The ideal candidate · will play a critical role in overseeing Network and Product Security, Vulnerability Management, Secure · SDLC, Application and offensive security, Mobile and API Security. · Role ...

  • FedEx ACC

    Domain Architect

    1 week ago

    FedEx ACC Hyderabad, India

    JOB DESCRIPTION: · Lead the long-range planning for the business, application, data and technical architecture for the solutions in a specific domain. · Ensuring all solutions within that domain work logically and coherently together. · Applies enterprise principles, standards an ...

  • LTIMindtree

    GCP-DEVOPS (GCP & Kubernetes) || 2.5 to 5 Years

    1 week ago

    LTIMindtree Hyderabad, India

    GCP-DEVOPS (GCP & Kubernetes) · Experience - 2.5 to 5 Years · Location - Hyderabad · Job Description: · 2+ Years of experience worked as DevSecOps engineer · Cloud (detailed knowledge of at least one cloud platform) · Google Cloud Platform (GCP) strongly preferred · Amazon Web Se ...