Equabli - DevSecOps Lead - Cloud Security (7-9 yrs)

General Summary :

Equabli is looking for a talented Cloud Infrastructure Technical Lead to help reimagine and reinvent how collections and recoveries are done in the US. Reporting to the Infrastructure Manager, you will be a part of a passionate, talented team that is growing and be responsible for achieving the team's roadmap goals.

This is an ideal opportunity for an enthusiastic and passionate technical leader who has previously worked at a tech scale-up or disruptor (or who has equivalent experience), has led significant growth, and knows what to expect from the challenges of a scaling company/startup.

We work in an agile fashion, in small, cross-functional squads, with daily stand-ups and fortnightly retrospectives. You'll bring new ideas and become an integral part of the process of continuously improving our product.

We are seeking an experienced Senior SecDevOps Engineer to join our dynamic team. In this role, you will be responsible for leading a team of SecDevOps professionals and overseeing the implementation and maintenance of security and operational practices across our cloud infrastructure. You will play a critical role in ensuring the security and stability of our systems while enhancing our DevOps practices.

Key Responsibilities :

- Team Leadership : Lead, mentor, and manage a team of SecDevOps engineers, providing guidance and support in the execution of security and operational tasks.

- Cloud Security : Design and implement security measures for AWS cloud environments, including VPC, S3, and data security.

- Network Security : Oversee the configuration and management of network security, including firewalls, VPNs, and DDoS protection.

- Compliance and Security Frameworks : Ensure compliance with security standards and frameworks such as SOC 2 and GDPR.

- Maintenance and Monitoring : Manage SSL certificates and perform log monitoring to detect and respond to security incidents.

- Security Implementations : Implement and maintain security practices across applications, networks, and data.

- Tool Management : Utilize and manage various tools and technologies related to security, infrastructure, and secure frameworks.

Must Have :

- AWS Cloud : extensive experience with AWS cloud services and security features.

- Security Expertise : Proven expertise in network security, firewall management, and secure frameworks.

- Compliance : Experience with SOC 2, GDPR, and other security compliance requirements.

- Operational Skills : Skilled in managing SSL certificates, VPN configurations, and log monitoring.

- Security Technologies : Proficiency in maintaining and securing VPC, ACL, security groups, routing tables, WAF S3, and other AWS cloud and network components.

- Incident Response : Ability to manage and respond to security incidents effectively.

Good-to-Have Skills :

- Infrastructure as Code : Experience with Terraform for Infrastructure Management.

- Containerization : Familiarity with Kubernetes (K8s), EKS, and container security.

- Cloud Platforms : Experience with GCP (Google Cloud Platform).

- CI/CD Tools : Knowledge of ArgoCD for continuous deployment.

- GitHub Actions : Should have knowledge about GitHub Actions as CI tools.

- Database Configuration : Experience with Amazon RDS data obfuscation (or coming with an approach to continue being ISO certified)

- Tools : It is good to have experience with MS-Tune and Microsoft Device Compliances as MDM.

Experience : 7+ years of experience

Education : Bachelor's degree in computer science, information systems, information technology, or related disciplines.