Principal DevSecOps Engineer

Get to know our Team:

The DevSecOps team is responsible for building secure infrastructure and running our infrastructure that runs our security products. We design security solutions which are easy to use and effective in the long run, monitor threats and vulnerabilities and provide several levels of protections to our complete infrastructure. Our team is passionate about the details and we work very closely with a wide range of stakeholders.

Get to know the Role: 

• Design and implement security best practices across all Grab infrastructure.

• Setting guidelines and writing automation for running the large scale infrastructure of the Security team

• Be the specialist consultant on AWS and Azure Security

• Identify and remediate security gaps using industry best practices and automated solutions.

• Provide advice on security best practices, and guide teams in developing, adopting and enforcing security standards within the organization.

• Implement the latest security tools and techniques that improve the security posture of the organization.- Perform periodic reviews and monitor networks, analyze logs and systems in order to prohibit unauthorized use, prevent loss of critical information, and maintain service availability.

• Build out Compliance automation by developing in-house tools as well as evaluating and deploying third party products by doing PoCs.

• Participate in external and internal audits and bring them to successful completion.

The day-to-day activities:

• Review deployment architectures and cover for security

• Set security best practices for cloud security 

• Identify security loopholes in the system and provide permanent solutions for the same.

• Responsible for running the large scale infrastructure of the Security engineering team.

• Identify process that are manual and improve the process through automation.

• Ensure security best practice is followed at every level and provide solutions to improve existing processes.

• Be involved in the design and subsequent implementation of software and service infrastructure

• Mentor other engineers, define our technical culture, and help build a fast-growing team

The must haves: 

• 10+ years of experience in designing and running large scale infrastructure.

• Strong understanding of Linux and Network security in depth.

• Strong foundation and in-depth technical knowledge of security engineering, authentication and security protocols and applied cryptography.

• Strong skills in at least one or more scripting language; Perl, Python, Go, or Shell- Passionate about security, enjoy challenges and maintain up-to-date knowledge of available and emerging security threats and various security technologies.

• Strong knowledge in Kubernetes, Docker Swarm or other cluster management software

• Strong interpersonal skills with the ability to communicate and work effectively across the organization.

Nice to Have:

• Experienced in implementing and managing HIDS/NIDS, FIM, SIEM solutions.

• Experienced with directory services and single-sign-on solutions.

• Experienced with vulnerability management, patching automation and understanding of VA/PT techniques

• Knowledge of information security standards like ISO 27001, PCI-DSS will be an added advantage