Developer Security Operations
Descrição da Vaga
**Job Overview** Hands\-on DevSecOps engineer responsible for securing and maintaining ThriveCart's e\-commerce platform infrastructure, deployment automation, and production observability. You will implement security automation, maintain monitoring systems, and enable engineering teams with security tooling while ensuring high availability. **Key Responsibilitie** **sInfrastructure \& Systems Securit** * yImplement and maintain security scanning in CI/CD (SAST, dependency, container * )Harden AWS infrastructure (WAF, Security Groups) and manage network segmentatio * nMonitor security advisories, coordinate patching, and track vulnerability remediatio * nManage encryption (rest/transit), secure compute resources, and audit IAM policie * sProvide security tooling/dashboards and assist developers with finding **sThreat Detection \& Observabilit** * yMaintain CloudWatch dashboards (Payment metrics, Database health, API performance * )Configure GuardDuty/Security Hub and build alerts for DDoS, intrusion, and anomalie * sMonitor production health, investigate anomalies, and perform root cause analysi * sBuild investigation queries for security incidents and maintain response runbook * sMonitor for penetration attempts, API abuse, and suspicious access pattern **sInfrastructure as Code \& Operation** * sManage AWS resources via Terraform (EC2, RDS, IAM, VPC) with security\-first configuration * sMaintain zero\-downtime CI/CD pipelines with integrated security gates and rollback mechanism * sAdminister MariaDB databases (performance tuning, backups, access controls * )Maintain Docker\-based dev environments and secure container configuration * sSupport compliance requirements (PCI\-DSS) and manage evidence collectio **nTechnical Environmen** * tPrimary: AWS (GuardDuty, WAF, CloudWatch, EC2, RDS), Terraform, Docker, MariaDB, Git, Linu * xSecurity Tools: Snyk/SonarQube (SAST), Trivy (Container), Checkov (IaC), AWS Secrets Manage * rSecondary: Nginx, Memcached, PHP 7\.4 envs, GitHub Actions, Let's Encryp **t Required Skil** * lsSecurity: Vulnerability assessment, threat detection, IAM design, secrets manageme * ntDevOps: CloudWatch alerting, Terraform module dev, Bash scripting, Log analys * isSoft Skills: Security\-first mindset, calm under pressure, collaborative educat **or Experience (3\-5 yea** * rs)Production operations for high\-traffic web apps with a focus on secur * ityImplementing security controls (WAF, IAM, scanning) in AWS environme * ntsInfrastructure as Code (Terraform) and CI/CD security integrat * ionDatabase administration (MariaDB/MySQL) and container security (Dock * er)DDoS mitigation, incident response, and compliance framework experie nce
Vaga originalmente publicada em: linkedin
Receba vagas como esta no seu email
Crie um alerta gratuito e seja o primeiro a saber de novas oportunidades
Alertas que entendem o que você quer
Não receba qualquer vaga. Receba apenas as que combinam exatamente com o que você busca.
Filtro:
Você recebe tudo isso:
Filtro:
Você recebe apenas:
Zero ruído. Só vagas relevantes para você.
Outros exemplos de filtros precisos:
Filtros Combinados
Combine linguagem + framework + nível + localização. Seja tão específico quanto quiser.
Email Diário
Receba um resumo diário apenas com vagas que passam nos seus filtros. Sem spam.
Kanban Visual
Organize suas candidaturas em um quadro Kanban. Acompanhe cada processo seletivo.
Planos simples, sem surpresas
Comece grátis e faça upgrade quando quiser
Premium
- Tudo do plano gratuito
- Vagas salvas ilimitadas
- Quadros Kanban ilimitados
- Alertas de vagas por email
- Suporte prioritário
Pronto para encontrar sua vaga ideal?
Junte-se a milhares de desenvolvedores que já usam o Job For Dev
Encontre as melhores oportunidades para desenvolvedores no Job For Dev