Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

RATE NOW!
- ABECA 2025
  
  RATE NOW!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

HRhelpdesk

Compare

5.0

based on 1 Review

10 HRhelpdesk Jobs

DevSecOps Security Engineer - OWASP/NIST/SOC II Frameworks (5-8 yrs)

HRhelpdesk

5.0

based on 1 Review

5-8 years

Indore

DevSecOps Security Engineer - OWASP/NIST/SOC II Frameworks (5-8 yrs)

HRhelpdesk

posted 28d ago

Job Role Insights

Flexible timing

Key skills for the job

Cyber Security Hospital Administration Incident Management Devsecops Cisa Cissp

+ 2 more

Job Description

Job Description :

The Organization is seeking a DevSecOps Security Engineer with a focus on OWASP, MITRE, SOC 2, and NIST philosophy and compliance. The candidate should have experience with GitHub, GitHub Actions, DePenda Bot, Azure, and AWS with at least basic familiarity with PHP and Ruby on Rails.

Responsibilities :

- Develop and maintain DevSecOps practices and tools to ensure security and compliance.

- Implement and enforce OWASP, MITRE, SOC 2, and NIST security best practices and frameworks.

- Conduct security assessments, vulnerability scans, and penetration testing.

- Collaborate with development teams to integrate security into the CI/CD pipeline and automate security testing and compliance checks.

- Manage and maintain security tools, including WAFs, IDS/IPS, and vulnerability scanners.

- Respond to security incidents and perform root cause analysis.

- Stay up-to-date with the latest security threats, trends, and technologies.

Requirements :

- BS/MS in Computer Science, Information Security, or a related field.

- 5-8 years of experience in DevSecOps, security engineering, or a related field.

- Familiarity with OWASP, MITRE, SOC 2, and NIST security frameworks and best practices.

- At least basic familiarity with PHP and Ruby on Rails development.

- Experience with GitHub, GitHub Actions, and Dependabot for code management and security.

- Experience with Azure and AWS for infrastructure management and security.

- Understanding of security compliance and regulatory requirements.

- Problem-solving, communication, and collaboration skills.

- Experience with security tools, including WAFs, IDS/IPS, and vulnerability scanners.

- Incident response and root cause analysis experience.

Preferred :

- CISSP, CISA, or related certification.

- Experience with containerization and orchestration technologies, especially Kubernetes.

- Experience with IaC tools.

- Familiarity with DevOps practices.

HOW THEY WILL TAKE CARE OF YOU :

- Medical & Life insurance

- Motivating compensation

- Paid Holidays

- Great working environment

- Rapid career development opportunities