DevSecOps Lead

 

Recruiter:

Mindworx Consulting

Job Ref:

JNB007586/KN

Date posted:

Wednesday, October 26, 2022

Location:

Johannesburg, South Africa


SUMMARY:
The Python Backend Engineer is responsible for implementing and maintaining a comprehensive DevSecOps Security Program. This is a 1st line of defence role and will report into the Chief Information Security Officer of the bank

JOB DESCRIPTION:

Responsibilities and KRA’s
  • Implement a comprehensive DevSecOps security program to protect applications and supporting infrastructure from both internal and external threats
  • Embed the use of self-service and automated security testing into the DevOps / Software Development Lifecycle
  • Define rules and policies for all CI / CD Pipeline security tools and platform security tools
  • Establish strong governance and assurance controls and processes to continuously measure and improve coverage and operating effectiveness of controls
  • Conduct reviews of applications, systems, underlying infrastructure, and related processes relating to software development practices
  • Facilitate the use of secure architectural patterns and work with the security engineers to translate these patterns into line of business secure builds
  • Assist in documenting and tracking security findings into a formal risk register. Provide the necessary information to support any deviation to IT Security policies and standards
  • Establish a threat modelling architecture that is measurable and relatable to business to increase maturity on software development practices
  • Collaborate with feature teams, product owners, architecture, IT, business, vendors and other stakeholders to investigate development activities
  • Establish relevant metrics and produce risk reports for stakeholders highlighting key risks, threats, incidents progress and status to assist in decision making
Requirements
  • Bachelor's or Master's degree in Technology related field. Information Systems Security degree will be a plus
  • 8 to 10 years of Technology experience and out of which a minimum of 3 years in a DevSecOps role
  • Experience in managing DevSecOps in banking and financial services industry will be a big plus
  • Experience in implementing and automating cybersecurity controls for CI/CD pipelines
  • Professional security certifications, such as CSSLP, CISSP or CISM
  • Strong knowledge of vulnerability and threat management
  • Knowledge of Python and Dart languages will be a plus
Competencies
  • Strategic
  • Leading with Influence
  • Collaboration (Relating)
  • Customer First
  • Execution
  • Innovation (Perspective)
  • Personal Mastery (Learning)

 

NB! This job is now closed. You can apply for other jobs by uploading your CV.


 

 

 

Similar jobs you might be interested in:

Create a free job alert for DevSecOps Lead in Johannesburg

Enter your email address below and we will email you similar jobs when they become available:

You can cancel at any time. We will not spam you.
By giving us your email address your agree to our Terms and Conditions

 

Jobseekers

Register your CV Search jobs CV writing

Recruiter

Advertise jobs Search the CV database

General

Disclaimer Terms and conditions Privacy policy Cookie policy POPIA manual Unsubscribe

© Copyright 2024 Job Placements. All Rights Reserved.