Senior DevSecOps Engineer (100% Remote) Job at Dawar Consulting, Inc., Santa Clara, CA

TEdkTk1wVERiRjBGU3hNaTRqK2tqUEZvUlE9PQ==
  • Dawar Consulting, Inc.
  • Santa Clara, CA

Job Description

Our client, leading leader in life sciences and diagnostics, is looking for Senior DevSecOps Engineer (100% Remote) based out of Santa Clara, CA.


Duration: Long term contract (Possibility of further extension)

 

We are seeking a highly motivated professional with experience in Security and Privacy to join our dynamic team. You will help with threat modeling, application security posture management, security orchestration, vulnerability & weakness assessments to improve the resilience of the organization and its product portfolio.

 

Responsibilities:

  • Develop security-as-code & policy-as-code pipelines
  • Manage vulnerabilities (3rd party) and weaknesses (1st party) in Roche products, evaluating the criticality for an adequate prioritization and providing the most suitable remediation, working directly with the product teams as a trusted advisor
  • Conduct vulnerability monitoring, (on-demand) vulnerability scanning and other security testing activities
  • Provide expertise to product teams and Affiliates to answer inquiries, pre-sales requests, contract negotiations and other cybersecurity-related customer support
  • Contribute to initiatives within the Diagnostic Division to achieve the integration of defense capabilities into the development of new products and in the update/upgrade, maintenance and support of existing products in collaboration with Product Support teams.
  • Develop and automate technical workflows for investigations and assessments for cyber security vulnerabilities and drive onboarding of new products in Vulnerability Monitoring, and provide training to relevant stakeholders in the organization regarding Vulnerability Handling and Incident Response.
  • Develop, maintain and continuously optimize processes, playbooks and tools for Vulnerability Monitoring, Vulnerability Management, Incident Response, Threat Intelligence and Security Testing.
  • Evangelize security and privacy developing Security Champions across departments involved in the product development and operations
  • Maintain the product security controls and awareness supporting other PSPO Chapters (Solution Architecture, Product Support and Compliance/Privacy).

Education/Skills:

  • BA/BS in Business, Information Systems, Computer Science or a related relevant area of study is a plus
  • Minimum 3 years of related work experience in SDLC & cloud ops
  • Demonstrated soft skills: problem solving, leadership, communication, teamwork, flexibility and adaptability.
  • Demonstrated experience in Cloud computing technologies, full stack deployments etc.
  • Demonstrated experience in K8S, AWS or GCP, Docker and other cloud native tools
  • Demonstrated experience in Jenkins/ArgoCD/Tekton or another common CI/CD tool chain
  • Demonstrated skills in Sigstore, SBOM, SLSA and secure software supply chain management.
  • Ability to develop Terraform, K8S manifests or other forms of infrastructure as code
  • Ability to codify Rego or Cedar policies
  • Demonstrated experience in SAST & DAST tools (Checkmarx, Snyk, Mayhem, BurpSuite, ZAP etc)
  • Demonstrated experience automating security controls (eg shell scripting, python)
  • In-depth experience in managing information security and privacy risks and threat modeling.
  • In-depth experience in vulnerability handling pre and post-market launch
  • In-depth experience in system and cloud infrastructure hardening
  • Strong understanding of industry standards: ISO 27000 family and HITRUST
  • Certifications are a plus: SANS GIAC (GCIH, GPEN, GCIA, GCFA and others) , CEH, CISSP, CISA, CISM, LA ISO27001.


 

Company Benefits: Medical, Dental, Vision, Paid Sick leave, 401K

 

If interested, please send us your updated resume at hr@dawarconsulting.com / akansha@dawarconsulting.com

Job Tags

Full time, Contract work, Work experience placement, Remote job,

Similar Jobs

Northwestern Memorial Healthcare

Security Officer I (Full Time Days) Job at Northwestern Memorial Healthcare

 ...matching and lifecycle benefits, we take care of our employees. Ready to join our quest for better? Job Description The Security Officer I reflects the mission, vision, and values of NM, adheres to the organizations Code of Ethics and Corporate Compliance... 

Albertsons

Warehouse Order Selector Job at Albertsons

 ...-the-go throughout your entire shift, using a voice-controlled system...  ...up to 87 lbs. at any given time to shoulder level and up to 76....  ...to make a difference, and be a part of a cohesive team, lets talk!...  ...Evening shift ~ Holidays ~ Night shift ~ Overtime ~ Weekends... 

HiQ Solutions

Senior AI/ML Engineer - Hybrid Job at HiQ Solutions

Are you passionate about pushing the boundaries of artificial intelligence and machine learning? Do you thrive on solving complex challenges and driving innovation? If so, we invite you to be a part of HiQ Solutions, LLC, an IT consulting company that caters to diverse ...

STAND 8

Ui / ux designer Job at STAND 8

 ...Angeles, New York, New Jersey, Atlanta, and more including internationally in Mexico and India. Are you an expert UI UX designer with an incredible eye for detail, and want to leave your mark on an application that will be used globally? Come and join us in implementing... 

Get It Recruit - Finance

Accounts Payable Specialist - Remote | WFH Job at Get It Recruit - Finance

Are you an enthusiastic and detail-oriented individual with a passion for finance? We're seeking an Accountant to join our dynamic Accounts Payable team. This is a fantastic opportunity for those looking to grow within the accounting field and make a significant impact....