Description
DevSecOps Engineer
Highbrow LLC • Frisco, TX, United States • via LinkedIn
12 hours ago
Full–time
Apply on LinkedIn
Apply on KHON2 Jobs
Apply on BeBee
Apply on KSNT Jobs
Apply on Star Job Search
Apply on Racing Post Jobs
Apply on FOX21News Jobs
Apply on Valley Central Jobs
Job highlights
Identified by Google from the original job post
Qualifications
Proven experience in conducting penetration testing and internal bug bounties
Strong understanding of API and microservice architecture
Knowledge of security best practices and standards (e.g., OWASP, NIST)
4 more items(s)
Responsibilities
Conduct/Coordinate penetration testing to identify vulnerabilities in our systems and applications
Perform/Coordinate internal bug bounties to discover and address security flaws
Understand and implement security measures for API and microservice architecture
4 more items(s)
More job highlights
Job description
Job Description
Key Responsibilities:
1. Conduct/Coordinate penetration testing to identify vulnerabilities in our systems and applications.
2. Perform/Coordinate internal bug bounties to discover and address security flaws.
3. Understand and implement security measures for API and microservice architecture.
4. Collaborate with development teams to integrate security best practices into the software development lifecycle.
5. Monitor and respond to security incidents and breaches.
6. Develop and maintain security policies, procedures, and documentation.
7. Conduct security assessments and audits to ensure compliance with industry standards and regulations.
Required Skills and Experience:
1. Proven experience in conducting penetration testing and internal bug bounties.
2. Strong understanding of API and microservice architecture.
3. Knowledge of security best practices and standards (e.g., OWASP, NIST).
4. Experience with security tools and technologies (e.g., SIEM, IDS/IPS, vulnerability scanners).
5. Familiarity with cloud security (e.g., AWS, Azure).
6. Strong analytical and problem-solving skills.
7. Excellent communication and collaboration skills.
8. Relevant certifications (e.g., CISSP, CEH, OSCP) are a plus.
Preferred Skills:
1. Experience with DevSecOps practices and tools.
2. Knowledge of secure coding practices and code review.
3. Familiarity with regulatory compliance requirements.
4. Experience with threat modeling and risk assessment.
5. Ability to stay updated with the latest security trends and threats.