Weedmaps · 2 days ago
Senior DevSecOps Engineer
Wonder how qualified you are to the job?
Maximize your interview chances
AdvertisingApps
H1B Sponsorship
Insider Connection @Weedmaps
Responsibilities
Design and build greenfield automations and solutions for the security team
Assess infrastructure and application vulnerabilities, and take remediation actions as appropriate
Ensure policies and standards are being properly applied throughout the entire organization
Build pipelines supporting Continuous Delivery, SDLC Security tools
Operate and develop in a SOAR environment
Collaborate with information security, SRE and engineering teams to identify Platform needs and issues with respect to security
Build and run Container-based delivery (Docker) and serverless workflows (Lambda, Step-Functions)
Operate and manage AWS IAM permissions based on defined roles and responsibilities
Ensure tight security for an e-commerce platform including data encryption, security groups, environment scanning, etc.
AWS resource provisioning and management (based on immutable compute resources)
Micro-service support (service registry, service-to-service authentication, authorization, and auditing)
Author Agile stories, estimate story points, assist with sprint planning and retrospectives
Perform advanced security technical troubleshooting for cloud environments
Participate in incident response exercises and continue documenting security and incident response procedures
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
6-8 years combined experience in Software Engineering, DevOps, and/or Information Security
Literacy in Python and/or other programming or scripting languages.
Knowledge of PCI, HIPPA. GDPR, CCPA, and other security-related standards.
Collaboration, drive, and open communication internally and across teams
A passion for building innovative greenfield projects, with a focus on security
Strong problem-solving skills, and the ability to apply it to foreign systems
The ability to take an idea from concept to completion
Knowledge and experience with typical DevOps and DevSecOps tooling (CI/CD tools, github, k8s, docker, linux, etc)
Operationally savvy, experience with monitoring, alerting, and analyzing system metrics to identify problems and understanding system behavior specific to security concerns
Production experience with public cloud (AWS preferred)
Strong communication and collaboration skills
Preferred
Security certifications such as CISSP, CCSP, GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handler (GCIH) are a plus
Experience with SOAR tooling
Experience deploying immutable infrastructure (terraform preferred)
Benefits
Physical Health benefits: Medical, Dental & Vision
Mental Health benefits
Basic Life & AD&D - employer paid 1x salary up to $250,000
401(k) Retirement Plan (with employer match contribution)
Generous PTO, Paid Sick Leave, and Company Holidays
Supplemental, voluntary benefits
Paid parental leave
Company
Weedmaps
Weedmaps is the world's first marijuana technology and media brand. It is a sub-organization of WM Technology.
H1B Sponsorship
Weedmaps has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2021 (2)
2020 (3)
Funding
Current Stage
Late StageTotal Funding
unknown2021-04-13Undisclosed· Undisclosed
2018-08-15Undisclosed· Undisclosed
2015-11-01Acquired· by Grow One
Recent News
2024-05-24
Company data provided by crunchbase