DevOps Security Engineer - Digify｜Meet.jobs

Digify https://digify.com is a next-generation document security platform that helps protect and track documents after sending. Today, we have more than 150,000 users worldwide. Digify is profitable, fast-growing, and focused on building a product our customers love. We are the winner of the top security innovation competition - RSA Innovation Sandbox.

We are a team of self-starters who enjoy making things happen and making a difference. Our work environment strongly encourages self-learning and growth, and we expect all employees to work independently.

As a key member of the Digify team, you will be a primary owner of technical security administration and reporting responsibilities ranging from planning, implementation and administration of network security technology for our corporate, development and production infrastructure on the Amazon AWS cloud. You will be required to implement and upgrade cloud compute instances, databases, and network infrastructure using security best practices. The successful candidate will have a lead role in security technology selection, deployment and ongoing management for mission critical production services. As lead for security implementation and management, you will also be the technical liaison for SOC and ISO recertification with external security auditors. This role requires excellent written and oral communication skills as you will be interfacing with customers, management and internal functional teams at all levels.

Responsibilities

• Serve as a key member of the Digify tech team with a focus on security while managing the overall system health, performance, and capacity of our internal and client facing systems
• Contribute to Continuous Integration and Continuous Deployment (CI/CD) solutions in AWS
• Contribute to automation of our code delivery pipeline with the goal of one click deployments, rollbacks, and parameterized builds.
• Lead projects through design, pilot and deployment for new security solutions across a production cloud environment.
• Review implementation of security controls and evaluate effectiveness, make recommendations for improvements
• Develop a strategy for dealing with increasing number of audits, compliance checks and external assessment processes for internal/external auditors, i.e. ISO 27001
• Keep abreast of security incidents and act as primary control point during information security incidents

Required Skills and Experience

• Windows systems administration skills
• Well versed in internet architectures, including web, application, and database components.
• Experience with CI/CD processes and secure SDLC preferred
• Experience with Amazon Web Services (AWS) capabilities and architectural best practices.as well as experience implementing security mechanisms and controls in a cloud environment.
• Familiarity with security forensics and analysis of security threats and events and able to perform vulnerability scans, analyze results and assist with remediation.
• Experience in an Agile/Scrum development environment.
• Strong oral and written communication skills with ability to understand technology sufficiently to clearly communicate the complexity in simple terms for key stakeholders