Senior DevSecOps Engineer

Summary

Join F&G as a Senior DevSecOps Engineer and play a pivotal role in designing, implementing, and maintaining CI/CD pipelines and security practices. You will collaborate with IT operations and application services teams to enhance tooling and methodologies, focusing on practical, hands-on responsibilities in DevSecOps. This position involves designing cloud-native application infrastructure, making implementation recommendations, and ensuring adherence to service SLAs and security standards. You will also troubleshoot issues, participate in code reviews, and document DevSecOps processes. F&G offers an employee-centric flexible work environment with options for in-office, hybrid, and remote work arrangements.

Requirements

• 4-7 years of experience in DevSecOps or cloud software delivery, with technical expertise in tools like GitHub, Ansible, Terraform, JFrog, and SonarCloud
• Strong familiarity with cloud environments, particularly Azure Cloud, and container orchestration tools like Docker and Kubernetes
• Experience in implementing and managing security in cloud environments, and familiarity with security standards like CIS, SOX, and PCI-DSS
• Bachelor’s degree in Engineering, Computer Science, or related field; or relevant experience
• Strong technical skills and reasoning are required for this position
• Strong expertise in syntax of tools utilized in DevSecOps processes, such as git, bash, PowerShell, HCL, and YAML
• Experience in programming languages such as Java, Python, and C#
• In-depth knowledge of CI/CD tools and version control systems
• Excellent analytical, problem-solving, and interpersonal skills
• Ability to communicate technical concepts effectively across various organizational levels
• Proactive in identifying and resolving issues, with a focus on security and risk management
• Regular and punctual attendance

Responsibilities

• Design, develop, and implement solutions to integrate infrastructure and security requirements into the CI/CD pipeline and application environments in Azure
• Identify needs for build automation and implement CI/CD solutions using tools like GitHub Actions, Terraform, and Ansible
• Consult on DevSecOps requirements with a range of application and operations teams
• Develop reusable solutions and patterns for CI/CD pipelines, focusing on automation and system integration
• Troubleshoot and resolve issues in the DevSecOps domain, ensuring adherence to service SLAs
• Align DevSecOps practices with SDLC processes and ITIL principles
• Proactively assist the Application Support team in troubleshooting or remediating production issues, when necessary
• Participate in design and code reviews, guiding project scoping to align with architectural goals and organizational requirements
• Ensure adherence to governance and control requirements
• Document DevSecOps processes and maintain the currency and integrity of DevSecOps platforms
• Perform other functions, duties and projects, as assigned

Preferred Qualifications

• Experience using container orchestration tools preferred
• Certifications from recognized bodies (e.g., Cisco, CompTIA, Microsoft, DevOps Institute) are advantageous
• Knowledge and experience of application build processes and implementing automated testing

Benefits

Work Environments F&G believes in an employee-centric flexible environment, which is why we offer the ability for in-office, hybrid and remote work arrangements