DevSecOps Lead

Recruiter:

Mindworx Consulting

Job Ref:

JNB007586/KN

Date posted:

Wednesday, October 26, 2022

Location:

Johannesburg, South Africa

SUMMARY:
The Python Backend Engineer is responsible for implementing and maintaining a comprehensive DevSecOps Security Program. This is a 1st line of defence role and will report into the Chief Information Security Officer of the bank

JOB DESCRIPTION:

Responsibilities and KRAâs

Implement a comprehensive DevSecOps security program to protect applications and supporting infrastructure from both internal and external threats
Embed the use of self-service and automated security testing into the DevOps / Software Development Lifecycle
Define rules and policies for all CI / CD Pipeline security tools and platform security tools
Establish strong governance and assurance controls and processes to continuously measure and improve coverage and operating effectiveness of controls
Conduct reviews of applications, systems, underlying infrastructure, and related processes relating to software development practices
Facilitate the use of secure architectural patterns and work with the security engineers to translate these patterns into line of business secure builds
Assist in documenting and tracking security findings into a formal risk register. Provide the necessary information to support any deviation to IT Security policies and standards
Establish a threat modelling architecture that is measurable and relatable to business to increase maturity on software development practices
Collaborate with feature teams, product owners, architecture, IT, business, vendors and other stakeholders to investigate development activities
Establish relevant metrics and produce risk reports for stakeholders highlighting key risks, threats, incidents progress and status to assist in decision making

Requirements

Bachelor's or Master's degree in Technology related field. Information Systems Security degree will be a plus
8 to 10 years of Technology experience and out of which a minimum of 3 years in a DevSecOps role
Experience in managing DevSecOps in banking and financial services industry will be a big plus
Experience in implementing and automating cybersecurity controls for CI/CD pipelines
Professional security certifications, such as CSSLP, CISSP or CISM
Strong knowledge of vulnerability and threat management
Knowledge of Python and Dart languages will be a plus

Competencies

Strategic
Leading with Influence
Collaboration (Relating)
Customer First
Execution
Innovation (Perspective)
Personal Mastery (Learning)

NB! This job is now closed. You can apply for other jobs by uploading your CV.

Similar jobs you might be interested in:

IT Change Manager
Location: Pretoria
Salary:
Are you a seasoned Change Manager with a passion for driving innovation in highly technical IT solutions environments? Do you thrive in collaborating with technical teams to deliver cutting-edge enterprise integration and devsecops projects? If yes, we want YOU to lead transformative initiatives for our esteemed client!This is a 12-month fixed term contract role.
1 day ago

Enterprise Security Architect
Location: Midrand
Salary:
Our growing team is looking for an experienced Enterprise Security Architect who will play a key role in shaping the security strategy, architecture, and implementation across our enterprise IT landscape.As an Enterprise Security Architect, you will design and implement comprehensive security frameworks that protect our digital assets, intellectual property, and data, while enabling the business t...
16 days ago

DevSecOps Engineer
Location: Johannesburg
Salary:
We are recruiting for a devsecops Engineer position.
1 day ago

DevSecOps Lead

Similar jobs you might be interested in:

Create a free job alert for DevSecOps Lead in Johannesburg

Jobseekers

Recruiter

General