Devsecops Engineer

Experience in public cloud is required (AWS, Azure, GCP)
At least 3-5 years of experience in Cyber Security roles with a preference in the engineering field.
Experience work with software development or devops teams is preferred.
Experience in systems or network administration is preferred.
Experience working with industry standard regulations and compliance frameworks (PCI-DSS, ISO, NIST, SANS, SOX, SOC II, HIPAA)

Implement security controls and best practices across CI/CD pipelines
Ensure vulnerability assessments (including DAST and SAST) are part of every SDLC step.
Provide security guidance to product engineering teams building software applications in compliance with industry standards (PCI-DSS, NIST, CIS, OWASP) in public cloud environments
Provide architectural security guidance to DevOps team building cloud infrastructure in compliance with industry standards (PCI-DSS, NIST, CIS, OWASP) in public cloud environments
Collaborate with development teams to implement secure coding practices
Implement measures to improve security of software supply chain
Develop best practices and security standards for KUBRA Cloud Platform
Work with KUBRA Risk and Compliance team to support risk assessments by proactively providing mitigations to identified risks
Work with KUBRA Security team to build appropriate threat models for KUBRA Cloud Platform services
Maintain vulnerability and patch management processes inline with KUBRA security policy
Work with KUBRA Security Operations team for incident response as necessary
Identify opportunities and arrange for updated security training for KUBRA DevOps and Cloud Platform Engineering teams when appropriate