DevSecOps Architect

Key Requirements
• Bachelor’s degree or four or more years of work experience.
• Experience as a full stack developer, with hands-on experience in DevSecOps practices.
• Experience with CI/CD tools such as GitLab, Jenkins, Nexus, Artifactory.
• Experience with software security, secure coding, or software assurance tools and techniques.
• Knowledge and experience in Solution Architecture and frameworks.
• A degree in Computer Science, Computer Engineering or a related field.
• Experience with tools and technologies used throughout secure SDLC (e.g. Fortify, Checkmarx, Veracode, WhiteSource, Blackduck).
• Proven track record of securely architecting and owning cloud platforms such as (AWS, GCE, Azure) using Infrastructure as code techniques.
• Experience with Linux Containers (Docker), Kubernetes, and deployment of containerized applications/microservices architectures.
• Experience in software development.
• Experience in Information Security, Networking or Security Risk Management.
• Experience developing software or scripting with Java, Python, etc.
• Knowledge of Agile & DevOps methodologies.
• Experience with Cloud Security (AWS, GCS, Azure).
• Experience with ISO 27001-2, NIST 800-53, or other controls standards.
• Excellent documentation and organization skills.
• Provide strategic direction and subject matter expertise for wide adoption of DevSecOps automation, the security framework’s implementation and adherence in Axiata.
• Develop and promote best practices for DevSecOps and secure CI/CD.
• Stay up-to-date on new security tools & techniques, and act as driver of innovation and process maturity.
• Conduct research and evaluate new DevSecOps platforms, components, tools, and processes for new projects and ongoing initiatives.
• Collect security-related metrics and increase security visibility across the organization.
• Work with teams to bring continuous improvement to DevSecOps processes and tools.