Senior DevSecOps Engineer

Added: May 11, 2024
Precisely is the leader in data integrity. We empower businesses to make more confident decisions based on trusted data through a unique combination of software, data enrichment products and strategic services. What does this mean to you? For starters, it means joining a company focused on delivering outstanding innovation and support that helps customers increase revenue, lower costs and reduce risk. In fact, Precisely powers better decisions for more than 12,000 global organizations, including 99 of the Fortune 100. Precisely's 2500 employees are unified by four company core values that are central to who we are and how we operate: Openness, Determination, Individuality, and Collaboration. We are committed to career development for our employees and offer opportunities for growth, learning and building community. With a "work from anywhere" culture, we celebrate diversity in a distributed environment with a presence in 30 countries as well as 20 offices in over 5 continents. Learn more about why it's an exciting time to join Precisely!

Intro And Job Overview

We are looking for a Senior DevSecOps Engineer who will interface with senior management, Platform Engineering, QA and the Precisely development teams to continuously improve the security, stability, reliability and efficiency of our global SaaS platform. This individual will work with the team to architect and deploy the tools and systems that will make our production environment more secure and resilient, in order to effectively respond to and address incidents.

Responsibilities And Duties

  • Partner closely with Site Reliability Engineering ,SaaS Development, Pipeline Engineering, Infosec Compliance and Product Security teams to ensure that DevSecOps is an integral part of Precisely’s Continuous Delivery model for SaaS applications.
  • Design, build and automate security controls in collaboration with the SRE team.
  • Participate in Security Audits and ensure product readiness for SOC-2 Type 2 Audit
  • Contribute actively towards Precisely’s Fedramp Compliance project for DI Suite
  • Provide interpretations of and improvements to Information Security policies and procedures for secure application code development and perform code audits to identify security issues and suggest solutions and best practices
  • Maintain an awareness of threats, trends, and research In application security, with fluency in current events and standards in the security community.
  • Perform Security and Vulnerability Management at OS/Container/Code level
  • Manage WAF, Policies and Rules
  • Develop and optimize processes to improve the consumption of security development practices implemented within the CI/CD pipeline.
  • Triage, and remediate security alerts and incidents and Identify security gaps by reviewing processes.
  • Prepare security reports by collecting, analyzing, and summarizing data and trends.
  • Address issues of Security (code quality, reliability assurance, vulnerability) with DevOps solutions and services.

Requirements And Qualifications

  • At least 5 years of experience in a global multi-tenanted production environment as a DevSecOps engineer
  • Hands on skills on Kubernetes, AWS/GCP/Azure, Terraform/CloudFormation/Ansible.
  • Strong knowledge on Linux fundamentals, experience troubleshooting production issues.
  • Strong knowledge of Security compliance, Security scanning and Interpretation of Policies
  • Fair understanding of SRE and general SaaS service management principles.
  • Strong plus if you have been part of Fedramp Certification process
  • Strong collaboration, communication and interpersonal skills.
  • The ability to operate calmly in challenging and stressful situations.
  • A deep understanding of Kubernetes and Cloud Networking or previous experience in infrastructure and Networking
  • Exposure to any programming language (Go/Python/C,C++) is a big plus.

Preferred Requirements

  • Exposure to solutioning for Big Data Applications in Cloud

It is a requirement for all roles at Precisely to adhere to applicable data privacy and security laws, rules, regulations, and company policies. For more information about Precisely’s privacy practices, please see our Privacy Notice: