Innovation Hub I Cyber Security I DevSecOps Engineer, Cairo. Egypt
Deloitte
- Cairo
- Permanent
- Full-time
- Leading a team of consultants in delivering successful engagements to our clients.
- Ensuring the use of proven cyber security principles such as defence-in-depth and the principle of least privilege.
- Ensuring the use of Agile methodologies to deliver high-quality software on a dependable cadence.
- Building secure continuous integration and continuous delivery (CI/CD) pipelines.
- Implementing and managing the vulnerability management process.
- Directing threat modelling activities to identify potential vulnerabilities and implementing approaches to address them.
- Identifying, assessing, and selecting software tools to test and verify the security of an application.
- Designing and building secure infrastructure in public, private and hybrid cloud scenarios using infrastructure-as-code tools.
- Building strong relationships with client stakeholders and maintaining open and clear channels of communication.
- Contributing to sales activity, through proposal documentation and technical demonstrations.
- Attaining industry-accredited certifications, particularly across cloud platforms such as GCP, AWS and Azure.
- Experience of delivering technology solutions using Agile methodologies such as Scrum and Kanban.
- The ability to implement DevOps practices such as continuous integration and delivery (CI/CD). automated testing, infrastructure as code, site reliability engineering (SRE). and monitoring and alerting.
- A broad understanding of security practices such as penetration testing, threat modelling, vulnerability management, and static and dynamic application security testing.
- A thorough understanding of cyber security industry resources such as OWASP projects, vulnerability lists, NIST frameworks, CVEs, NCSC guidance, etc.
- Experience of architecting and/or implementing secure cloud computing solutions.
- A thorough understanding of the software development lifecycle (SDLC) as well as knowledge of the components of a secure SDLC.
- An appreciation of the platforms and tools commonly used in a modern software architecture, for example:
- Container orchestration tools such as Kubernetes and Docker Swarm
- Service mesh tools such as Istio and Hashicorp Consul
- Infrastructure as code tools such as Hashicorp Terraform and Ansible
- Configuration management tools such as Chef, Puppet and Ansible
- Monitoring and alerting tools such as Prometheus, Splunk, DataDog, etc.
- A willingness to work as part of a diverse team.
- A commitment to continuous improvement and lifelong learning.
- A passion for technology and a drive to deliver secure, high-quality solutions.
- An open mindset, allowing you to collaborate with colleagues and contribute to the success of your team.
- Personable with excellent communication skills, both written and spoken.
- An ability to remain calm under pressure whilst continuing to pay attention to detail.