Engineering Manager - Cloud Security (Devsecops)

Details of the offer

All about Zeta Suite :

Zeta is aNext-Gen Banking Techcompany that empowers banks and fintechs to launch banking products for the future. It was founded byBhavin Turakhiaand Ramki Gaddipati in 2015.Our flagship processing platform - Zeta Tachyon - is the industry's first modern, cloud-native, and fully API-enabled stack that brings together issuance, processing, lending, core banking, fraud & risk, and many more capabilities as a single-vendor stack. 15M+ cards have been issued on our platform globally.

Zeta Tachyon offers:-
-Rich digital-first cardholder experiences.
-Native embeddable banking support.
-Hyper-Personalisation Policy Engine to launch segment-of-one card programs.
-Web-based product configurators to launch in days vs. quarters.
-Rapid innovation & extensibility via APIs, event streams, and more.
-Modern & intuitive web-based back office experiences.
-Next-gen regulatory risk & compliance capabilities.

Zeta is actively working with the largest Banks and Fintechs in multiple global markets transforming customer experience for multi-million card portfolios.

Zeta has over1700+employees - with over70%roles in R&D - across locations in theUS,EMEA, andAsia. We raised$280 millionat a$1.5 billionvaluation from Softbank, Mastercard, and other investors in 2021.
Learn more @www.zeta.tech,careers.zeta.tech,Linkedin,Twitter

The Role:

This role is part of the Information Security Team, Engineering division of Zeta. The EM - DevSecOps is responsible for creating the securing and automating the environment, coming up with project roadmap, setting processes in place, creating CI/CD roadmap etc. Guide Developers and DevOps teams about new threats and help harden infrastructure and applications from various attacks as needed. The objective is to make zeta applications and infrastructure secure.
What would you do here?

Implement cloud security initiatives for entire organization Improve Cloud security posture and Kubernetes security using CI/CD Understand by regular gap assessment, Provide support in detection and mitigation of cyber security vulnerability and incidents for Cloud
Prepare and present reports of Vulnerability Assessment, Automation, Penetration Testing etc.
Oversee the planning and coordination of Cloud security Deploy, Maintain and Support Log Aggregation, Vulnerability and Threat Detection Solutions with associated visualizations so that real-time identification of issues can be performed.
In addition to the above specific responsibilities, as Cloud Security Engineer in Information Security division of Zeta, you will be responsible for:
Hiring decisions, hiring process definition, and continuous improvements. Broad knowledge of security domain with an understanding of cloud & kubernetes vulnerabilities, secure configurations and mitigation mechanisms
Perform review and validation of all deliverables for Cloud Security
Educate DevOps, Devs and Security Team
Continuous improvement of Cloud Security postureI
ntegrating various tools into CI/ CD and automate repetitive tasks
Make sure the environment is compliant to CIS, NIST, PCI etc.
Ensure that Security Standards are being adopted by the Product Team covering both Cloud, On-Prem, SaaS, PaaS and IaaS.
What are we looking for?

Critical: Solid understanding of public cloud technologies with hands-on technical knowledge of at least one major public cloud like AWS, Azure etc.
Experience of CI/CD Pipeline implementation and at least one tool (Jenkins, ArgoCD, Bitbucket Pipelines etc)Experience in at least one scripting language (Bash, Python, Java etc)Experience containerization and Kubernetes
Experience of automating and templating security processes and documentation for compliance purposes.
Hands on experience of vulnerability assessments, Penetration Testing, Web Application Security, data privacy, identify access management etc.
Experience of at least 2 active and passive security tooling (OWASP ZAP, Veracode, Checkmarx, Fiddler etc)Experience on Infrastructure as Code solution (Terraform, Ansible, Chef etc)Advantage: experience with security tools like Prisma, Aqua, Clair, Hashicorp Vault, etc.
High:
Conduct Architecture and Design review to provide guidance and security assurance around best practices and frameworks.
Work closely with the DevOps teams and share security insight
Knowledge of development practices using Java and Nodejs, Docker, Kubernetes and other container orchestration services
Experience with Secure Code Quality Tools, Testing and Techniques - ZAP, Wireshark, Sonarqube, Metasploit etc.
Understanding of security frameworks, controls and processes - CIS, NIST, PCI/DSS. SOCI/II, etc Medium experience in one or more languages - NodeJS, GoLang, Python, Perl, Ruby, Bash, Javascript, Java etc.
Ability to document risks, security controls and evidence to ensure compliance
Life At Zeta

At Zeta, we want you to grow to be the best version of yourself by unlocking the great potential that lies within you. This is why our core philosophy is'People Must Grow.'We recognize your aspirations; act as enablers by bringing you the right opportunities, and let you grow as you chase disruptive goals.

#LifeAtZeta is adventurous and exhilarating at the same time.You get to work with some of the best minds in the industry and experience a culture that values the diversity of thoughts. If you want to push boundaries, learn continuously and grow to be the best version of yourself,Zeta is the place to be!Explore the life at zeta

Zeta is an equal opportunity employer.

At Zeta, we are committed to equal employment opportunities regardless of job history, disability, gender identity, religion, race, marital/parental status, or another special status. We are proud to be an equitable workplace that welcomes individuals from all walks of life if they fit the roles and responsibilities.


Nominal Salary: To be agreed

Source: Lever_Co

Requirements

Application Architect: Servicenow

Handle architectural role in ServiceNow area. Analyse current technologies used within the target project and determine ways to improve by implementing Servi...


Ibm Careers - Andhra Pradesh

Published 13 days ago

Technical Consultant: Security Intel & Operations Consulting Svcs

Oversee and manage the day-to-day operations of the security department. Stay current on security industry trends and best practices and make recommendations...


Ibm Careers - Andhra Pradesh

Published 13 days ago

Application Developer: Sap Abap Hana

Responsible to design, develop and/or re-engineer highly complex application components and integrate software packages, programs and reusable objects residi...


Ibm Careers - Andhra Pradesh

Published 13 days ago

Data Engineer: Data Integration

As Data Engineer at IBM you will harness the power of data to unveil captivating stories and intricate patterns. You'll contribute to data gathering, storage...


Ibm Careers - Andhra Pradesh

Published 13 days ago

Built at: 2024-12-22T20:50:40.490Z