Our Partners thrive The H-E-B Way. As a Senior DevSecOps Engineer, you would have a...
HEART FOR PEOPLE ... you have a passion for mentorship and guidance, and love for the direct person-to-person interactions that create strong bonds between teams
HEAD FOR BUSINESS ... you have an ownership mentality and a consistent track record of timely delivery of high-quality software
PASSION FOR RESULTS ... the ability to guide the discussion, remove roadblocks, and provide guardrails for your team as they identify challenges and propose solutions
Senior DevSecOps Engineers at H-E-B revolutionize the way that software and systems are designed and deployed; and they aim to optimize the fluidity between development and operations. Senior DevSecOps Engineers are specialists and multi-disciplinary leaders that provide consultative services and work with internal business team members and external vendors to collect requirements, build and test specifications, and implement documented innovative technical solutions of security requirements.
ROLE

• Master CI/CD pipelines by creating patterns of automation, infrastructure deployment, maintenance, monitoring, security, and compliance using industry and enterprise best practices.
• Works with internal Information Systems teams to design, develop, analyze, and implement systems software and applications. Build security standards for teams and integrate platform, including container, vulnerability management tools within CI/CD pipelines.
• Serves as a subject matter expert for application security, providing guidance on industry best practices and defense in-depth strategies for the security posture of H-E-B cloud-based digital platforms.
• Works with project teams to assist with testing and evaluation of new solutions ensuring satisfaction of H-E-B security requirements.
• Tests cloud configurations and infrastructure for vulnerabilities.
• Ensures cloud infrastructure follows security and compliance control requirements.
• Designs, develops, documents, automates, and implements security infrastructure in code.
• Creates concise documentation to formalize security processes and guardrails for other engineers.
• Guides development teams to apply secure automation patterns and encourage Secure Software Development Lifecycle (SSDLC) best practices.

REQUIRED

• Minimum of four (4) years of development and support experience with system and security solutions in medium to large enterprises.
• Minimum of two (2) years of experience building and integrating systems in cloud and on-premise environments utilizing enterprise source code management tools and automation tooling
• Proficiency with Python, Golang, PowerShell, Perl, or Shell scripting.
• Proficiency managing Linux-based and Windows Server Operating Systems.
• Proficiency with secrets management and vaulting technologies.
• Proficiency utilizing APIs to optimize tasks or achieve automation.
• Knowledge of Amazon Web Services, Azure and/or Google Cloud Platform with proficiency in at least one.
• Knowledge of Terraform, Cloud Formation, Pulumi, and/or Ansible with proficiency in at least one.
• Solid understanding of web applications, web servers, application firewalls, frameworks, and protocols with respect to web application development, deployment, and operation in the cloud.
• Proficiency with cloud resources such as virtual networking, access controls (security groups and ACLs), service endpoints, application and network load balancing, API gateways, service principals, functions/serverless, storage buckets, containers, block storage and file shares.
• Familiarity with log analysis and Application Performance Monitoring.
• Familiarity with Agile and other project methodologies.
• Ability to work well under pressure and have great organizational and interpersonal skills.

Recommended

• A Bachelor's degree in Computer Science or Software Engineering.
• One or more professional security certifications such as CISSP, CISA, CEH, GIAC; or cloud certifications from AWS, Azure or GCP.
• Familiarity with PCI DSS, HIPAA, and other industry regulations
• Familiarity with API Security, Container Security, AWS Cloud Security

*** Position locations open to San Antonio, Dallas, and Austin, TX areas
ISSEC3232