Senior DevSecOps Engineer- Join Our Team.
Are you a DevSecOps expert ready for a new and exciting challenge? Join our innovative team at BKN301 Group Ltd and make a real impact.
We're looking for a Senior DevSecOps Engineer to lead the integration of security into our DevOps processes, pipelines, and tools. You will architect and implement security solutions like SIEM and vulnerability management, ensuring our BaaS platform is secure by design while enabling efficient, scalable operations.
Why BKN301 Group Ltd?
We are a leading Banking-as-a-Service (BaaS) provider, enabling clients to seamlessly integrate with core banking, issuing, acquiring, and other financial services. Security is at the core of our operations, and we are committed to embedding robust security practices into every phase of our software development lifecycle.
Key Responsibilities
- Tooling Implementation: Architect, deploy, and manage security-related tools such as SIEM (e.g., Splunk, QRadar), vulnerability scanners (e.g., Nessus, Qualys), and endpoint protection systems.
- Security Integration: Embed security practices and tools into CI/CD pipelines to ensure code, applications, and infrastructure meet security standards before deployment.
- Vulnerability Management: Automate the detection, reporting, and remediation of vulnerabilities in applications, containers, and infrastructure.
- Infrastructure as Code (IaC): Secure and review IaC templates (e.g., Terraform, CloudFormation) to enforce best practices for cloud environments
- Cloud Security: Design and implement security controls for cloud platforms (AWS, Azure, GCP), including IAM policies, network segmentation, and logging.
- Automation: Develop scripts and tools to automate security testing, monitoring, and remediation processes.
- Policy Enforcement: Implement tools like Open Policy Agent (OPA) to enforce security policies across code, infrastructure, and deployments.
- Monitoring & Alerting: Enhance security monitoring by setting up SIEM solutions and integrating them with logging and alerting tools to detect threats in real time.
- Threat Modeling: Conduct threat modeling sessions with development teams to identify and mitigate potential risks early in the design phase.
- Compliance: Implement and maintain tools to ensure compliance with industry regulations such as SOC 2, PCI DSS, and GDPR.
- Collaboration: Partner with development, DevOps, and security teams to train and promote secure coding practices and DevSecOps culture.
Join Us If You Have:
- 5+ years of experience in DevSecOps, security engineering, or related roles in cloud and DevOps environments.
- Proven experience implementing and managing security tools such as SIEM, vulnerability scanners, and endpoint protection systems.
- Expertise in deploying and managing SIEM solutions (e.g., Splunk, QRadar, Elastic SIEM).
- Proficiency in CI/CD tools like Jenkins, GitLab CI/CD, Azure DevOps, or CircleCI.
- Strong knowledge of containerization (Docker, Kubernetes) and securing containerized environments.
- Expertise with security tools such as Snyk, Veracode, SonarQube, or Checkmarx for code analysis.
- Experience with cloud security in AWS, Azure, or GCP (e.g., IAM, security groups, WAF).
- Hands-on experience with scripting languages (e.g., Python, Bash, PowerShell).
- Familiarity with Infrastructure as Code (IaC) tools like Terraform, CloudFormation, or Pulumi.
- Understanding of security standards and frameworks (e.g., NIST, OWASP, CIS Benchmarks).
- Strong problem-solving and analytical skills.
- Excellent communication and collaboration abilities.
- Proactive approach to learning and implementing new technologies.
Great If You Possess:
- Certifications such as AWS Security Specialty, Certified Kubernetes Security Specialist (CKS), or Certified DevSecOps Professional.
- Experience in financial services, fintech, or regulated industries.
- Familiarity with Zero Trust Architecture principles.
Education
- Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).
Location:
Remote (India)
Why You'll Love Working With Us:
- Join a global team where diverse perspectives and expertise are valued.
- Experience a collaborative environment that fosters personal and professional growth.
- Immerse yourself in a culture that prioritizes team empowerment and collective success.
Ready to Take the Leap?
If you're passionate about DevSecOps and want to drive security innovation in fintech, we'd love to hear from you. Apply now and let's create fintech milestones together at BKN301.
Our Hiring Process:
- HR Introduction: A friendly chat with our HR team.
- Technical Evaluation: Show us your DevSecOps expertise.
- Hiring Manager Interview: Discuss your experience and vision.
- Team Fit Discussion: Ensure mutual alignment with our culture.
We aim to complete the process within 2-3 weeks to bring the right talent onboard quickly.
BKN301 Group Ltd is an equal opportunity employer. We welcome applications from all qualified individuals regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, or disability status.