DevSecOps Product Engineer
Job Description
Job Description
Join TSP as a DevSecOps Product Engineer! The DevSecOps Product Engineer identifies, develops, plans, implements, and supports enterprise security systems using Agile methodologies and DevOps principles to enable Intel's global security posture.
Other responsibilities include but are not limited to:
Creates solutions in partnership with enterprise architecture to design security measures (from infrastructure to software) that safeguard sensitive data, protect confidentiality and availability, and enable compliance with security policies and regulatory requirements for the enterprise.
Partners with system engineers, network engineers, database administrators, and information security personnel in support, integration, development, and lifecycle management.
Develops and validates functional requirements and identifies gaps or risks to meet business and security outcomes.
Reviews health measures for various functional performance components of platform, applications, controls, and appliances and supports key security systems, responds to security events, and troubleshoots and proactively discovers security issues across the enterprise.
Validates security controls are working as designed (validation and/or efficacy) to ensure effective security measures.
Develops new and/or updates existing controls that limit the risk exposure for the company and optimizes security system performance.
Researches new security and information technology trends in enterprise applications, networks, and systems to understand and drive strategic plans, forward engineering, upgrades, and changes while influencing vendors to drive bug resolution, product feature enhancement, and key security improvements.
Works to identify, design, test, document, and implement internal process improvements such as automating manual processes, optimization of data delivery, elimination of technical debt, and support/administration of key security control systems.
Supports lifecycle management of systems, software, and infrastructure and works to drive the path to production for CI/CD automation and configuration management.
Qualifications
You must possess the below minimum qualifications to be initially considered for this position. Preferred qualifications are in addition to the minimum requirements and are considered a plus factor in identifying top candidates.
Minimum Qualifications
The candidate must have a Bachelor's Degree in Electrical Engineering, Computer Engineering, Computer Science, Information Systems, or related STEM field and 4+ years of experience in:
Production operations, engineering, and support on prem and in the cloud.
Applying information security principles or risk management practices to production operations and environments.
DevSecOps or equivalent.
Cloud Platforms: AWS and Azure cloud services
Infrastructure as Code: CloudFormation and Terraform for automating infrastructure deployment.
CI/CD Pipelines: Setting up and managing CI/CD pipelines with GitHub Actions and Jenkins.
Scripting and Programming: Python, Bash, and PowerShell for automation, tooling, and integration.
Security-Focused Background: Security best practices in cloud environments.
Vulnerability assessment tools and secure coding practices.
Containerization and Orchestration: Docker and Kubernetes for secure application deployment.
Monitoring and Logging: Setting up centralized logging and monitoring systems using CloudWatch.
Incident Response: Incident response and managing security incidents.
This position is not eligible for Intel Immigration sponsorship.
Preferred Qualifications
Cloud Certification(s) from Amazon Web Services, Microsoft Azure, Google or Cloud Security Alliance.
Other valid certifications include SANS Institute, CompTIA, (ISC)2, and Cisco covering information security principles such as GSEC, Security+, Network+, CISSP, CCNA, or OSCP, Lean Six Signa Green Belt / Black Belt certifications.