Hello,
Hope you are doing well!!!
We are constantly on the lookout for professionals to fulfil the staffing needs of our clients, and we currently have a job opening that may interest you.
Title: DevSecOps Engineer (8+ years)
Location: Dallas, TX (Hybrid)
Duration: Contract
NEED H1B with Passport No.
Responsibilities
· Provide technical security risk oversight of DevSecOps Assurance processes
· Review and approval of security vulnerability acceptance requests
· Ensure adherence to security requirements and vulnerability remediation SLAs
· Active participation in recurring security and vulnerability oversight meetings
· Assist with daily DevSecOps Security Assurance operational and enforcement processes for our current suite of security automation tools.
· Provide support to IT teams for enhancing security and protection controls in relation to security automation, CI/CD, DevSecOps, and vulnerability remediation.
· Participate in DevSecOps Security Assurance projects and initiatives as assigned.
Qualifications
· Extensive experience working with widely used security automation technologies such as
· Static Application Security Testing (SAST)
· Software Composition Analysis (SCA)
· Open Source software vulnerabilities
· Dynamic Application Security Testing (DAST)
· Interactive Application Security Testing (IAST)
· Container and image security scanning
· API security scanning
· Practical experience analyzing vulnerability data to understand and communicate risks, concerns and outcomes of decisions
· Experience with CI/CD pipeline tools and technologies such as Bamboo, Jenkins, GitHub, GitHub Actions, Artifactory, Nexus, Docker, Kubernetes, Ansible, or Terraform, and Atlassian Suite (Jira, Confluence, Bitbucket)
· Working knowledge of OWASP Top 10, SANS Top 25, NIST/NVD (National Vulnerability Database), CVSS (Common Vulnerability Scoring System), CVE (Common Vulnerabilities and Exposures), technical security vulnerability remediation/mitigation, and security risk oversight
· Strong, demonstrated analysis and problem-solving, communication, interpersonal skills
· Professional security certification in good standing such as ISC2 CISSP, ISC2 Certified Secure Software Lifecycle Professional (CSSLP), GIAC Security Essentials Certification (GSEC), or CompTIA Security+
· Recent software engineering experience is a plus
· Experience with scripting languages such as PowerShell, Python, Bash, or Postman is a plus
If you believe you are in the job market or interested in making a change, please email me the resume along with contact details on darshan@nytpcorp.com or give me a call at (201) 484-0336.
You may respond to me via email but please be sure to include your direct phone number so I can reach out to you quickly. In considering candidates for our various positions, time is of the essence and we are committed to responding to our clients promptly.
Thank you for taking time out of your busy schedule to read and respond to this message
Thanks,
_______________________________________
Darshan More | New York Technology Partners
120 Wood Avenue S | Suite 504 | Iselin NJ 08830
Direct: (201) 484-0336 | Desk: 201-521-0300 Ext: 412
darshan@nytpcorp.com | www.nytp.com | LinkedIn
We respect your online privacy. If you would like to be removed from our mailing list please reply with “Remove” in the subject and we will comply immediately. We apologize for any inconvenience caused. Please let us know if you have more than one domain. The material in this e-mail is intended only for the use of the individual to whom it is addressed and may contain information that is confidential, privileged, and exempt from disclosure under applicable law. If you are not the intended recipient, be advised that the unauthorized use, disclosure, copying, distribution, or the taking of any action in reliance on this information is strictly prohibited