DevSecOps Engineer

Summary

Join F&G as a DevSecOps Engineer and contribute to designing, implementing, and maintaining CI/CD pipelines and security practices within our software development and cloud infrastructure. This hands-on role involves collaborating with IT operations and application services teams to enhance tooling and methodologies. You will support the architecture and design of infrastructure for cloud-native applications, assist in implementation approaches, and troubleshoot DevSecOps issues. The position requires 0-3 years of experience in DevSecOps or related fields, familiarity with Azure Cloud, and expertise in various tools. F&G offers a flexible work environment with in-office, hybrid, and remote work arrangements.

Requirements

• 0-3 years of experience in DevSecOps, cloud software delivery, or automation, with technical expertise in tools like GitHub, Terraform, JFrog, Ansible, and SonarCloud
• Strong familiarity with cloud environments, particularly Azure Cloud
• Experience in implementing and managing security in cloud environments, and familiarity with security standards like CIS, NIST, SOX, or PCI-DSS
• Bachelor’s degree in Engineering, Computer Science, or related field; or relevant experience
• Good technical skills and reasoning
• Good expertise in syntax of tools utilized in DevSecOps processes, such as git, bash, HCL, YAML, Powershell, NodeJS
• Experience in programming languages such as C#, Python, or JavaScript
• Knowledge of CI/CD tools and version control systems
• Good analytical, problem-solving, and interpersonal skills
• Ability to communicate technical concepts effectively across various organizational levels
• Proactive in identifying and resolving issues, with a focus on security and risk management

Responsibilities

• Assist in designing, developing, and implementing solutions to integrate infrastructure and security requirements into the CI/CD pipeline and application environments in Azure
• Identify needs for build automation and implement CI/CD solutions using tools like GitHub Actions, Terraform, and Ansible
• Consult on DevSecOps requirements with a range of application and operations teams
• Assist in the development of reusable solutions and patterns for CI/CD pipelines, focusing on automation and system integration
• Troubleshoot and resolve issues in the DevSecOps domain, ensuring adherence to service SLAs
• Align DevSecOps practices with SDLC processes and ITIL principles
• Assist the Application Support team in troubleshooting or remediating production issues when necessary
• Participate in design and code reviews, guiding project scoping to align with architectural goals and organizational requirements
• Ensure adherence to governance and control requirements
• Document DevSecOps processes and maintain the currency and integrity of DevSecOps platforms
• Perform other functions, duties and projects, as assigned
• Maintain regular and punctual attendance

Preferred Qualifications

• Experience using container orchestration tools
• Certifications from recognized bodies (e.g., Cisco, CompTIA, Microsoft, DevOps Institute)
• Knowledge and experience of application build processes and implementing automated testing

Benefits

Ability for in-office, hybrid and remote work arrangements