Position Title: Cloud Security Developer
Design security features and capabilities for the our clients Chief Security Office orchestration and automation platform that leverage modern cloud technologies. Work activities will include new and enhancing feature design through to implementation of cloud-based security orchestration and automation functions following Agile methodologies. Scope of work will include; solution discovery, security technology evaluations, product engineering, configuration and development designs. Some of the cloud security feature categories in scope include; Continuous Compliance Inspection, Automated Remediation, Security ChatOps, Security Analytics, and Policy Orchestration.
MAJOR DUTIES AND RESPONSIBILITIES Security Design & service planning: Work closely with direct and cross team members including our clients business units and Chief Security Office (CSO) users, security engineers, developers, system engineers, network operations personnel and product vendors to define and incorporate feature requirements for delivering high-quality technical security services applications. Responsibilities include; consuming requirements and strategic goals defined by program leadership, performing service planning, architecture definition leveraging Infrastructure-as-a-Service (IaaS) and Platform-as-a-Service (PaaS) elements, defining DevSecOps model, and determining availability and performance monitoring as well as disaster recovery. Daily working environment includes cloud native elastic application delivery and support within robust third-party public cloud environments such as Amazon Web Services (AWS). Security software development: Lead the improvement and execution of a Software Development Lifecycle (SDLC) model used to support a continuous integration (CI) and continuous delivery (CD) pipeline to construct and deliver high quality security applications. Interpret design specifications and devise development solutions to program security features meeting solution objectives including; proficiency with modern scripting and programming languages such as Shell/BASH, YAML, C, C++, Java, NodeJS and Python, as well as proficiency with commercial or web-scale system software development and delivery, and the creation of data structures, automated functions, and logic algorithms. Frequent adoption of Agile/SCRUM practices including Feature, Epic, Story creation and execution, iterative software delivery practices, as well proficiency with common work-flow tools. Practice routine expertise developing and delivering code across multiple maturity environments. Development duties also include designing of flexible interfaces to support dynamic system interactions and sharing of security data. Additionally designing, developing, and executing manual and automated test cases for performing code verification of software applications and feature functionality according to input specifications and user requirements. Security engineering: Responsible for the coordination and partnering with security technology vendors, Software-as-a-Service providers, and public-cloud solution providers to drive security platform improvements. Continual identification, hands-on evaluation and pilot use of new technology features to efficiently meet evolving security requirements expanding capabilities of the security platform and support project initiatives. Employing best practices to ensure compliance with common standards and organizational security requirements for application and architecture design. Knowledge in security technology management and operational best practices and the ability to incorporate new concepts for advancing and improving existing methods and procedures as necessary.