Senior DevOps Security (DevSecOps)

EPAM's Security practice is actively seeking a skilled Senior DevOps Security (DevSecOps) professional to enhance our esteemed Hospitality and Tourism sector client services.
In this key role, the chosen candidate will play a crucial part in weaving security measures consistently through the stages of application development and deployment to raise and support our security standards.

#LI-DNI

Responsibilities

• Aid in orchestrating the coordination of EPAM, customer, and QSA efforts for PCI annual certification
• Integrate security controls within development and deployment pipelines
• Create automation for security procedures to align with DevOps deployment cycles
• Initiate Secure Software Development Lifecycle (SSDLC) programs
• Educate software development teams on secure development practices and tools
• Analyze and propose strong security architecture in AWS
• Relay the importance of a Secure Software Development Life Cycle to the customer and teams
• Collaborate with teams - including BAs, TLs, Developers, and QA - ensuring a uniform understanding of security requirements and applied mitigations
• Work jointly with other security teams, such as Cloud Security Engineers or Penetration Testers
• Execute risk assessments, pinpoint vulnerabilities, and advise on mitigation measures
• Forge and put into action incident response plans
• Carry out regular code evaluations and security testing, including both static and dynamic analyses
• Sync security endeavors with business stakeholders and objectives

Want more jobs like this?

Get jobs in San Javier, Chile delivered to your inbox every week.

Get Jobs

Send me The Muse newsletters for the best in career advice and job search tips.

By signing up, you agree to our Terms of Service & Privacy Policy.

• 3+ years in Software Development or a Security-focused role
• Strong drive for advancement and growth within the security arena
• Familiarity with Security Development methodologies (e.g., Microsoft SDL, OWASP OpenSAMM, BSIMM)
• Familiarity with OWASP Top 10 security threats and attack scenarios
• Hands-on Threat Modeling experience and familiarity with Threat Modeling Tools
• Familiarity with tools for Static Code Analysis, Static / Dynamic Application Security Testing, Penetration Testing, Intrusion Detection / Prevention
• Understanding of core Security-related activities within development, including Security Requirements gathering, Risk Assessment, Security Code Review
• Experience with PCI DSS and GDPR security standards and their implementation requirements
• Understanding of core security concepts, principles, protection areas, defense levels, threat mitigation mechanisms, and fundamental infrastructure security and penetration testing
• Proficiency in cloud security controls and policy implementation on AWS
• Fluent English communication skills at a B2+ level

• Understanding of Security Features and Mechanisms provided by major OS and development platforms/technologies
• Familiarity with principles of DevOps such as CI/CD, test automation, shift-left security, and shared responsibility models
• Experience with cloud security controls and policies in Microsoft Azure
• Possession of certifications like CISSP, CCSP, SANS GIAC, or similar is a plus

• Improved medical coverage - EPAMers are eligible to participate in a supplementary health insurance program that shall have the usual coverage in the industry, with the Company funding 100% of the value of the monthly premium for participation
• Lunch Allowance - You will receive a daily allowance of CLP $ 7,000 per working day. Enjoy a nice meal on us
• Allowance for internet and electricity - You will receive an allowance of CLP $15,000 per month to cover internet and electricity expense
• National Holiday Bonus - We celebrate joining the Chilean Market. That is why all our employees will receive a bonus of CLP $86,646 in September
• Christmas Bonus - You will receive an End of Year bonus of CLP $170,539. It will be paid during the month of December, to ensure you have a Happy Holiday!
• Learning Culture - We want you to be the best version of yourself, that is why we offer unlimited access to learning platforms, a wide range of internal courses, and all the knowledge you need to grow professionally
• Additional Income - Besides your regular salary, you will also have the chance to earn extra income by referring talent, being a technical interviewer, and many more ways
• Are you open to relocation? - If you want to relocate to another country and we have the right project, we will assist you every step of the way, to help you and your family, reach your new home