Job Details

We are seeking a motivated DevSecOps Engineer to join our team. The ideal candidate will help bridge the gap between development and operations with a strong focus on security throughout the application lifecycle. This role will be responsible for managing our on-premises Kubernetes environment (4 clusters managed by Rancher on virtualized infrastructure), implementing and maintaining secure CI/CD pipelines in Azure DevOps, and establishing security best practices across our containerized applications. This position offers significant growth opportunities for professionals passionate about container technologies and security in a specialized industry setting.Responsibilities:Manage and optimize our Kubernetes clusters running within virtualized environments, ensuring high availability, security, and performanceImplement and maintain secure deployment pipelines using Azure DevOps for deploying applications from Azure Git RepositoriesCollaborate with software engineers to understand and identify critical areas for security implementation in the development processCollaborate with software engineers to understand application operation, configuration, and resource needsEvaluate and implement security tools to enhance vulnerability detection and remediationEstablish security standards and best practices for container images, Kubernetes configurations, and application deploymentsAutomate security controls, data protection, and vulnerability management in deployment pipelinesMonitor Kubernetes clusters and applications for security anomalies and performance issuesParticipate in incident response and forensic analysis of cybersecurity eventsConduct regular security assessments, audits, and compliance checksDocument infrastructure configurations, security controls, and operational proceduresContribute to PCI compliance efforts and security requirements for third-party integrationsResearch and implement new technologies to improve security posture and operational efficiencySpecific Knowledge:Knowledge of DevSecOps tools and technologies including containerization (Docker, Kubernetes), Infrastructure as Code (Terraform, Ansible), and CI/CD pipeline toolsStrong understanding of Kubernetes architecture, components, and security conceptsExperience with container orchestration tools, preferably RancherFamiliarity with CI/CD pipelines, especially in Azure DevOpsKnowledge of Linux systems administration and bash scriptingUnderstanding of network security principles and container isolationKnowledge of cloud technologies such as AzureFamiliarity with ASP.NET Core configuration and security best practicesExperience with on-premises virtualized infrastructure management in enterprise environmentsUnderstanding of security scanning tools and vulnerability management processesExcellent problem-solving skills to identify and remediate security, operational, and performance issuesExceptional communication skills to work effectively with development teams and managementAbility to work collaboratively with diverse teams, fostering a culture of security awarenessExperience with compliance regulations and standards such as PCI DSS, GDPR, ISO27001, or SOC 2All other duties as assigned Education Requirements:Associate or bachelor's degree in Computer Science, Information Technology, System Administration, or equivalent experienceSecurity certifications beneficial but not required (e.g., Security+, CKS, Azure Security Engineer)Kubernetes certifications beneficial but not required (e.g., CKA, CKAD)Minimum Experience:3+ years of experience in IT operations, development, or security rolesHands-on experience with Kubernetes or similar container orchestration platformsExperience with Linux environments and bash scriptingFamiliarity with on-premises virtualized infrastructure managementBasic understanding of application security concepts and secure coding practicesFamiliarity with version control systems (Git)Demonstrable experience or knowledge in implementing security controls within infrastructureExperience working with hybrid environments (on-premises and cloud services)Strong problem-solving abilities and willingness to learn new technologies Equal Opportunity Employer This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.