Loading...
Share this Job

IT Security Dev Ops Engineer

Location: 

Oklahoma City, OK, US, 73120

Req ID: 240347 

 

BASIC PURPOSE: As a DevSecOps engineer, you will assist in developing an automated security framework for robust deployment tools and processes, leveraging various scripting languages and open source solutions. For this role, you must be an enthusiastic self-starter.  Your role will include championing appropriate security strategy governing application and cloud-based platform development.  You will work with other infrastructure, DevOps and application engineers to understand product and business needs, provide expertise around application and cloud service development, as well as define and own clear guardrails, alerts, and Security as Code (SaC) deployments to provide 24/7 protection from malicious traffic, vulnerabilities and other attack vectors.  You will partner with the Security Operations Team with respect to mitigation activities and incident response and you will partner with the Security Governance Risk and Compliance team with respect to vulnerability and risk assessment, prioritization and follow-up protocols to ensure mitigation activities are timely, effective and measurable.  


MAJOR RESPONSIBILITIES:

  • Work with Contractors, Developers, DevOps, and Engineering teams to promote/implement the DevSecOps program
  • Partner with business platform and DevOps teams to define, implement and operate a support model that leverages DevSecOps/Shift Left principles
  • Support a secure, stable, and scalable AWS/Azure cloud infrastructure architecture aligning security, compliance, performance, and resilience 
  • Provide expertise in software code testing and deployment, secure coding practices, and other DevSecOps automation tools
  • Assess architectures and designs for security vulnerabilities and suggest and help implement proper alternatives
  • Oversee the management and remediation of identified security flaws within our development platforms
  • Build tools and automation scripts that enable developers to easily consume security services/self-serve for most operational tasks
  • Build and/or develop/suggest security training for DevOps and application engineers
  • Research the threat landscape and conducts vulnerability analysis on emerging risks to the organization, and recommend remediation activities to management
  • Participate in the risk assessment process as needed
  • Coordinate regularly scheduled security code scanning across the IT infrastructure
  • Build and maintain monitoring, auditing, and reporting frameworks that produce artifacts that support security and compliance needs
  • Receive and respond to after-hours calls, pages, and/or e-mails regarding security problems
  • Other duties assigned as needed

 

EDUCATION AND EXPERIENCE: 

  • Education: Bachelor’s Degree preferred, emphasis in Cyber Security or Information Security preferred
  • CISSP, CSSLP, CASP, or CISA certification required; Auditing and Compliance certifications such as CISA, PCI-ISA, and PCIP desired
  • Significant knowledge of security best practices for client-server product architectures, focusing predominantly on cloud-based server development
  • Significant knowledge of AWS systems, including EC2, IAM, CloudWatch, CloudTrail, Config, Lambda, Security Groups, VPCs, WAF, Guard Duty, Inspector, etc.
  • Significant knowledge of Azure ADO
  • Significant knowledge of DevOps Automation:  Puppet, Ansible, GitHub
  • Familiarity with API Security, Container Security, AWS and Azure Cloud Security
  • Familiarity with Amazon AWS Policy, Configuration, and Security Management tools
  • Familiarity with Azure Policy, Configuration, and Security Management tools
  • Familiarity with Continuous Integration/Continuous Development (CI/CD)
  • Understanding of Secure Software Development Life Cycle (SSDLC)
  • Experience with security automation and machine learning
  • Experience coordinating and performing vulnerability assessments through use of automated and manual tools (Tenable, NMAP, etc.)
  • Capability to prepare security vulnerability and risk management reports for management
  • Leadership and Teaming skills to coordinate remediation of vulnerability within established timeframes
  • Proficiency in C/C++ Programming and Bash, Python or other scripting languages
  • Familiarity with Information Security frameworks/standards (i.e. CIS, NIST, RFC2196, etc.)
  • Knowledge of PCI-DSS, HIPAA, CCPA Standards and Policies and the associated certification and audit processes
  • Comprehension in the security areas of key management systems, certificate management, encryption, penetration testing vulnerability scanning, security and monitoring tools, etc.
  • Knowledge of Windows and Linux patch management and related information security functions (authentication, encryption, iptables, SSL, Ciphers, etc.)
  • Knowledge of information security principles and practices to include, but not limited to, the following areas: Vulnerability Scanning, Security Information and Event Management (SIEM), NG Firewall, NGAV, Encryption, Host Based Security, Data Loss Prevention, Malware Prevention
  • Knowledge of one or more SSO methodologies (SAML, LDAPS, MS AD)
  • Minimum 7-8 years in Information Security strongly preferred
  • Minimum 3-5 years’ experience in security incident analysis and response required


SKILLS AND PHYSICAL DEMANDS:

  • Skills:
    • Ability to work in a fast-paced, rapidly changing, Agile/competitive environment
    • Excellent technical knowledge of infrastructure and application development
    • Good understanding of the Company’s goals and objectives
    • Ability to conduct research into issues and products as required
    • Ability to prioritize/execute tasks in a high-pressure environment and make sound decisions in emergency situations
    • Strong interpersonal, written and oral communication skills
    • Ability to present ideas in a user-friendly language
    • Highly self-motivated and directed
    • Keen attention to detail
    • Proven analytical and problem-solving abilities
    • Strong customer service orientation; experience working in a team-oriented, collaborative environment
  • Typical Physical Demands
    • Requires prolonged sitting, some bending and stooping
    • Occasional lifting up to 25 pounds
    • Manual dexterity sufficient to operate a computer keyboard and calculator
    • Requires normal range of hearing and vision

Job Function(s): Information Technology 

 

Love’s Travel Stops & Country Stores is the industry-leading travel stop network in the United States. For more than 55 years, we’ve provided customers with highway hospitality and “Clean Places, Friendly Faces.” We’re passionate about serving drivers with clean, modern facilities stocked with fuel, food and supplies. We offer meals from popular restaurant chains, trucking supplies, showers and everything needed to get back on the road quickly. The Love’s Family of Companies includes:

  • Gemini Motor Transport, one of the industry’s safest trucking fleets
  • Speedco, the light mechanical and trucking service specialists
  • Musket, a rapidly growing, Houston-based commodities supplier and trader
  • Trillium, a Houston-based alternative fuels expert

 

The Love's Experience

Love’s was founded in 1964 on the values of integrity, customer focus, strong work ethic, innovation and perseverance. We are looking for these in every person we hire. No matter what job you do for Love’s, your commitment to these values will not only continue our legacy of growth, it will also ensure your successful career.


Nearest Major Market: Oklahoma City
Nearest Secondary Market: Oklahoma

Job Segment: Engineer, Risk Management, Linux, Operations, Security, Engineering, Finance, Technology