HiTakeJobHiTakeJob

Staff DevSecOps Engineer- Prompt - Sentinellabs

  • חברה: Sentinellabs
  • מיקום: Tel Aviv-Yafo, Tel Aviv District, Israel
  • טכנולוגיות: AWS, ArgoCD, CI/CD, Docker, GitHub Actions, Helm, Kubernetes, Linux, Terraform

תיאור המשרה

Own the infrastructure security domain across cloud and Kubernetes environments Build and maintain secure CI/CD pipelines and cloud infrastructure Manage and remediate vulnerabilities in container images, infrastructure, and application code Implement and maintain security tooling (SAST, DAST, SCA, secret scanning) Own compliance initiatives such as SOC2, HIPAA, CIS, NIST, ISO 27001, and FIPS-related requirements, including working with platforms like Scytale and supporting audits, evidence collection, and remediation processes Handle penetration test remediation and security audit findings Manage user access, IAM, RBAC, and security policies Maintain and automate certificate management and secrets handling Implement and manage WAF, DDoS protection, and network security controls Improve Kubernetes platform security, monitoring, and automation Strong experience with Kubernetes/OpenShift and AWS/EKS Experience with Terraform, Helm, GitHub Actions, and ArgoCD Experience securing CI/CD pipelines, container images, and cloud environments Experience working with hardened/minimal container image providers such as Echo and Minimus or similar Familiarity with FIPS-compliant environments and security best practices Experience with security tools such as SentinelOne (S1), Snyk, Wiz, Trivy, Prisma Cloud, SonarQube, Checkov, or similar Familiarity with vulnerability management, WAF, DDoS protection, and DevSecOps practices Experience working with compliance and security standards Ability to demonstrate previous hands-on experience with security remediation, compliance processes, and DevSecOps implementations Strong Linux, networking, and troubleshooting skills Restricted Stock Units (RSUs) Employee Stock Purchase Plan (ESPP) Competitive leave benefits Gender-neutral parental leave Employee Assistant Program Workout sessions and a Wellness App Medical and insurance benefits Pension Employee Assistance Program (EAP) Global home office allowance Mobile phone reimbursement

תחומי אחריות

Own the infrastructure security domain across cloud and Kubernetes environments Build and maintain secure CI/CD pipelines and cloud infrastructure Manage and remediate vulnerabilities in container images, infrastructure, and application code Implement and maintain security tooling (SAST, DAST, SCA, secret scanning) Own compliance initiatives such as SOC2, HIPAA, CIS, NIST, ISO 27001, and FIPS-related requirements, including working with platforms like Scytale and supporting audits, evidence collection, and remediation processes Handle penetration test remediation and security audit findings Manage user access, IAM, RBAC, and security policies Maintain and automate certificate management and secrets handling Implement and manage WAF, DDoS protection, and network security controls Improve Kubernetes platform security, monitoring, and automation Strong experience with Kubernetes/OpenShift and AWS/EKS Experience with Terraform, Helm, GitHub Actions, and ArgoCD Experience securing CI/CD pipelines, container images, and cloud environments Experience working with hardened/minimal container image providers such as Echo and Minimus or similar Familiarity with FIPS-compliant environments and security best practices Experience with security tools such as SentinelOne (S1), Snyk, Wiz, Trivy, Prisma Cloud, SonarQube, Checkov, or similar Familiarity with vulnerability management, WAF, DDoS protection, and DevSecOps practices Experience working with compliance and security standards Ability to demonstrate previous hands-on experience with security remediation, compliance processes, and DevSecOps implementations Strong Linux, networking, and troubleshooting skills Restricted Stock Units (RSUs) Employee Stock Purchase Plan (ESPP) Competitive leave benefits Gender-neutral parental leave Employee Assistant Program Workout sessions and a Wellness App Medical and insurance benefits Pension Employee Assistance Program (EAP) Global home office allowance Mobile phone reimbursement

דרישות

Own the infrastructure security domain across cloud and Kubernetes environments Build and maintain secure CI/CD pipelines and cloud infrastructure Manage and remediate vulnerabilities in container images, infrastructure, and application code Implement and maintain security tooling (SAST, DAST, SCA, secret scanning) Own compliance initiatives such as SOC2, HIPAA, CIS, NIST, ISO 27001, and FIPS-related requirements, including working with platforms like Scytale and supporting audits, evidence collection, and remediation processes Handle penetration test remediation and security audit findings Manage user access, IAM, RBAC, and security policies Maintain and automate certificate management and secrets handling Implement and manage WAF, DDoS protection, and network security controls Improve Kubernetes platform security, monitoring, and automation Strong experience with Kubernetes/OpenShift and AWS/EKS Experience with Terraform, Helm, GitHub Actions, and ArgoCD Experience securing CI/CD pipelines, container images, and cloud environments Experience working with hardened/minimal container image providers such as Echo and Minimus or similar Familiarity with FIPS-compliant environments and security best practices Experience with security tools such as SentinelOne (S1), Snyk, Wiz, Trivy, Prisma Cloud, SonarQube, Checkov, or similar Familiarity with vulnerability management, WAF, DDoS protection, and DevSecOps practices Experience working with compliance and security standards Ability to demonstrate previous hands-on experience with security remediation, compliance processes, and DevSecOps implementations Strong Linux, networking, and troubleshooting skills Restricted Stock Units (RSUs) Employee Stock Purchase Plan (ESPP) Competitive leave benefits Gender-neutral parental leave Employee Assistant Program Workout sessions and a Wellness App Medical and insurance benefits Pension Employee Assistance Program (EAP) Global home office allowance Mobile phone reimbursement