• polygon-breadcrumbs
  • Back
  • Sagentlogo

    Sagent

    DevSecOps

    Chennai

    Full Time

    Hybrid

    3-8 Years Exp

    Job Description

    Sagent is seeking a DevSecOps Engineer to join a growing information security team responsible for securing next-generation, cloud-native financial technology systems, used by some of the largest mortgage lenders and loan servicers in the United States. The DevSecOps Engineer will be a hands-on, tactical role that will secure cloud-native applications through Infrastructure as Code, build automation for cloud-based security controls, and execute the “secure by design” vision across the GCP and Azure environments. This role will have abundant opportunities to challenge the “status-quo” and work with cutting-edge security technologies, tools, and platforms.

    Desired Candidate Profile

      • Extensive experience (~3+ years) building, deploying, and securing GCP & Azure cloud infrastructure with Terraform.
      • Experience expressing “secure by design” and “shift left” principles through Infrastructure as Code (Terraform)
      • Prior system administrator (Linux/Windows) experience is a big plus!
      • Enthusiasm for automation and creative technical ability to identify time-saving or novel automation workflows. Proven ability to enhance security through automation, continuous integration/deployment pipelines, and challenge existing processes/norms. 
      • Strong knowledge of software security risks and threats (OWASP top 10). Experience with application security tools such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).
      • Experience building & maintaining container-based/Kubernetes-based workloads; understanding of container security threats and best practices.
      • Experience building & maintaining cloud networking & cloud-based security controls, such as SSL certificate management, API gateway, Web Application Firewall (WAF), Intrusion Prevention System (IPS) and associated security best practices.
      • Experience working with YAML pipelines/Azure Pipelines/Azure DevOps (or equivalent technologies).
      • Experience configuring secure IAM, such as least privilege, zero trust, privileged identity management.
      • The habit of staying current on cloud security policies, standards, regulations, and best practices, as well as strong understanding of cloud-focused security risks and threats.
      • Ability to work independently with minimal guidance and mentor other team members as necessary.
      • Support the Information Security & core DevOps teams with other cloud-based security tasks as needed, and willingness to work outside of standard business hours during critical incidents.

    DevSecOps

    location Chennai

    onsite Hybrid

    exp 3-8 Years Exp

    vector_icon Full Time

    apply now

    Have a question about this job?

    Our talent advisors are happy to answer.