DevOps SecurityTest Engineer (RARR Job 5993)

We are seeking a highly skilled Security Testing Engineer with strong DevOps experience to join our team. The ideal candidate will be responsible for integrating security testing practices into the DevOps lifecycle, ensuring that applications and infrastructure are secure, compliant, and resilient against threats.

Key Responsibilities

• Design, implement, and execute security testing strategies across CI/CD pipelines.

• Perform vulnerability assessments, penetration testing, and code reviews to identify risks.

• Collaborate with DevOps teams to embed security controls into automated workflows.

• Develop and maintain security test scripts, tools, and frameworks for continuous testing.

• Monitor and analyze security test results, providing actionable insights to development teams.

• Ensure compliance with industry standards (OWASP, ISO, NIST, GDPR, etc.).

• Work closely with cross-functional teams to remediate vulnerabilities and improve overall security posture.

• Drive DevSecOps best practices by advocating for secure coding, automated security checks, and proactive risk management.

Required Skills & Experience

• Proven experience in security testing (application, infrastructure, APIs, cloud).

• Strong knowledge of DevOps tools (Jenkins, GitLab CI/CD, Docker, Kubernetes, Terraform, Ansible).

• Hands-on experience with security tools (Burp Suite, OWASP ZAP, Nessus, Metasploit, Snyk, Checkmarx, etc.).

• Familiarity with AWS cloud platforms and their security models.

• Solid understanding of secure SDLC and DevSecOps practices.

• Proficiency in scripting languages (Python, Bash, PowerShell) for automation.

• Excellent problem-solving, communication, and collaboration skills.