Created
April 9, 2018 09:30
-
-
Save ipedrazas/49a2947383de6919caba9b1c86248df8 to your computer and use it in GitHub Desktop.
JD at nearForm
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Description | |
A Day in the Life… | |
You get back from the school run and make yourself some coffee. Turn on your monitor and join the hangout for your daily standup. You spend the morning working on securing the Docker infrastructure. You go and meet some friends at your favourite bistro for lunch. When you get back, those penetration test reports are available, you review, suggesting countermeasures that can be taken to reduce the risk of the system being hacked. The day goes by in a blink and before you know it it's time for the evening school run. | |
What you'll be doing | |
At nearForm, we work with international clients who are industry leaders in their respective fields. Our role is to help them build solutions and platforms; help them to launch new product ventures and fundamentally change how they operate. | |
As a DevSecOps engineer, you will be leading the security efforts on building secure CI/CD pipelines on orchestration platforms such as DCOS or Kubernetes. | |
You will also be developing tools to enforce and monitor the security key indicators (code coverage, static analysis status, vulnerability scanning, penetration testing results…) in order to act on them and allow our customers to make governance decisions. | |
You will be the point of reference for security questions from many teams and products. | |
What we ask of you | |
4 years experience developing at an enterprise level | |
Located in Ireland | |
Availability for occasional short-term travel | |
Fluent English and outstanding communication skills (written and oral) | |
An ability to perform well in a fast-paced environment, taking the lead when required | |
Excellent diplomatic, analytical and multitasking skills | |
Experience working on Agile projects | |
Experience programming in Node.js, Golang or Python preferred, with a willingness to learn new languages | |
Modern DevOps mindset using best of breed open source tools and technologies, some knowledge of ansible is required | |
Experience working with containers and container orchestration. Docker is a must, knowledge of any orchestration platform such as Kubernetes or DCOS is very beneficial | |
A strong focus on secure coding (OWASP), constantly on top of ever-shifting modern day best practices, Docker infrastructure security, vulnerability management, security processes on CI/CD pipelines | |
Ability to assess third-party products and technologies to efficiently automate as much as possible the security assessment of our DevOps processes | |
Ability to identify and execute automation on regular tasks to lighten the security processes | |
Experience performing assessments (from the security point of view) on steady-state projects | |
Proactivity about security risks |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment