Staff DevSecOps Engineer- Prompt - Sentinellabs
- חברה: Sentinellabs
- מיקום: Tel Aviv-Yafo, Tel Aviv District, Israel
- טכנולוגיות: AWS, ArgoCD, CI/CD, Docker, GitHub Actions, Helm, Kubernetes, Linux, Terraform
תיאור המשרה
Own the infrastructure security domain across cloud and Kubernetes environments
Build and maintain secure CI/CD pipelines and cloud infrastructure
Manage and remediate vulnerabilities in container images, infrastructure, and application code
Implement and maintain security tooling (SAST, DAST, SCA, secret scanning)
Own compliance initiatives such as SOC2, HIPAA, CIS, NIST, ISO 27001, and FIPS-related requirements, including working with platforms like Scytale and supporting audits, evidence collection, and remediation processes
Handle penetration test remediation and security audit findings
Manage user access, IAM, RBAC, and security policies
Maintain and automate certificate management and secrets handling
Implement and manage WAF, DDoS protection, and network security controls
Improve Kubernetes platform security, monitoring, and automation
Strong experience with Kubernetes/OpenShift and AWS/EKS
Experience with Terraform, Helm, GitHub Actions, and ArgoCD
Experience securing CI/CD pipelines, container images, and cloud environments
Experience working with hardened/minimal container image providers such as Echo and Minimus or similar
Familiarity with FIPS-compliant environments and security best practices
Experience with security tools such as SentinelOne (S1), Snyk, Wiz, Trivy, Prisma Cloud, SonarQube, Checkov, or similar
Familiarity with vulnerability management, WAF, DDoS protection, and DevSecOps practices
Experience working with compliance and security standards
Ability to demonstrate previous hands-on experience with security remediation, compliance processes, and DevSecOps implementations
Strong Linux, networking, and troubleshooting skills
Restricted Stock Units (RSUs)
Employee Stock Purchase Plan (ESPP)
Competitive leave benefits
Gender-neutral parental leave
Employee Assistant Program
Workout sessions and a Wellness App
Medical and insurance benefits
Pension
Employee Assistance Program (EAP)
Global home office allowance
Mobile phone reimbursement
תחומי אחריות
Own the infrastructure security domain across cloud and Kubernetes environments
Build and maintain secure CI/CD pipelines and cloud infrastructure
Manage and remediate vulnerabilities in container images, infrastructure, and application code
Implement and maintain security tooling (SAST, DAST, SCA, secret scanning)
Own compliance initiatives such as SOC2, HIPAA, CIS, NIST, ISO 27001, and FIPS-related requirements, including working with platforms like Scytale and supporting audits, evidence collection, and remediation processes
Handle penetration test remediation and security audit findings
Manage user access, IAM, RBAC, and security policies
Maintain and automate certificate management and secrets handling
Implement and manage WAF, DDoS protection, and network security controls
Improve Kubernetes platform security, monitoring, and automation
Strong experience with Kubernetes/OpenShift and AWS/EKS
Experience with Terraform, Helm, GitHub Actions, and ArgoCD
Experience securing CI/CD pipelines, container images, and cloud environments
Experience working with hardened/minimal container image providers such as Echo and Minimus or similar
Familiarity with FIPS-compliant environments and security best practices
Experience with security tools such as SentinelOne (S1), Snyk, Wiz, Trivy, Prisma Cloud, SonarQube, Checkov, or similar
Familiarity with vulnerability management, WAF, DDoS protection, and DevSecOps practices
Experience working with compliance and security standards
Ability to demonstrate previous hands-on experience with security remediation, compliance processes, and DevSecOps implementations
Strong Linux, networking, and troubleshooting skills
Restricted Stock Units (RSUs)
Employee Stock Purchase Plan (ESPP)
Competitive leave benefits
Gender-neutral parental leave
Employee Assistant Program
Workout sessions and a Wellness App
Medical and insurance benefits
Pension
Employee Assistance Program (EAP)
Global home office allowance
Mobile phone reimbursement
דרישות
Own the infrastructure security domain across cloud and Kubernetes environments
Build and maintain secure CI/CD pipelines and cloud infrastructure
Manage and remediate vulnerabilities in container images, infrastructure, and application code
Implement and maintain security tooling (SAST, DAST, SCA, secret scanning)
Own compliance initiatives such as SOC2, HIPAA, CIS, NIST, ISO 27001, and FIPS-related requirements, including working with platforms like Scytale and supporting audits, evidence collection, and remediation processes
Handle penetration test remediation and security audit findings
Manage user access, IAM, RBAC, and security policies
Maintain and automate certificate management and secrets handling
Implement and manage WAF, DDoS protection, and network security controls
Improve Kubernetes platform security, monitoring, and automation
Strong experience with Kubernetes/OpenShift and AWS/EKS
Experience with Terraform, Helm, GitHub Actions, and ArgoCD
Experience securing CI/CD pipelines, container images, and cloud environments
Experience working with hardened/minimal container image providers such as Echo and Minimus or similar
Familiarity with FIPS-compliant environments and security best practices
Experience with security tools such as SentinelOne (S1), Snyk, Wiz, Trivy, Prisma Cloud, SonarQube, Checkov, or similar
Familiarity with vulnerability management, WAF, DDoS protection, and DevSecOps practices
Experience working with compliance and security standards
Ability to demonstrate previous hands-on experience with security remediation, compliance processes, and DevSecOps implementations
Strong Linux, networking, and troubleshooting skills
Restricted Stock Units (RSUs)
Employee Stock Purchase Plan (ESPP)
Competitive leave benefits
Gender-neutral parental leave
Employee Assistant Program
Workout sessions and a Wellness App
Medical and insurance benefits
Pension
Employee Assistance Program (EAP)
Global home office allowance
Mobile phone reimbursement