Epicareer Might not Working Properly
Learn More
Please Turn on your JavaScript

Epicareer might not working properly because your browser javascript is turned off.

What is JavaScript?

JavaScript is like the magic behind making websites interactive. Basically, it makes Epicareer more enjoyable and engaging.
How do i turn this on?
Find tutorial for your browser below :
  1. Make sure the webpage is open.
  2. In the Safari app on your Mac, choose Safari > Preferences, then click Security.
  3. Make sure the Enable JavaScript checkbox is selected.
  4. Click Websites.
  5. On the left, click Content Blockers.
  6. Make sure Off is chosen in the pop-up menu next to the website.
  7. On the left, click Pop-up Windows.
  8. Make sure Allow is chosen in the pop-up menu next to the website.
Visit Site here
  1. Open Chrome on your computer.
  2. Click. then Settings.
  3. Click Privacy and Security.
  4. Click Site settings.
  5. Click JavaScript.
  6. Select Sites can use Javascript.
Visit Site here
  1. If you're running Windows OS, in the Firefox window, click Tools > Options.
  2. Tip: If you're running Mac OS, click the Firefox drop-down list > Preferences.
  3. On the Content tab, click the Enable JavaScript check box.
Visit Site here
  1. Click the "Settings and more" icon at the top right of the Edge browser window.
  2. Click Settings.
  3. From the Settings menu, click Cookies and site permissions.
  4. Scroll down and click on JavaScript.
  5. In the JavaScript window, toggle the slider to "on" or "allowed."
  6. Close the Settings tab.
  7. Refresh the page.
Visit Site here
  1. Go to Settings.
  2. Click Advanced in the left sidebar, and click Privacy & security.
  3. Under Privacy and security, click Site settings.
  4. Click JavaScript.
  5. At the top, turn on or off Allowed (recommended).
Visit Site here
Any Question? Contact us
logo
Jobs or company...

Principal DevSecOps Engineer -Remote USA

  • Full Time, remote
  • NITYA Software Solutions, Inc.
  • Remote, United States of America
Salary undisclosed
Checking job availability...
Original
Simplified

Role: Principal DevSecOps Engineer

Location: Remote

C2C

Primary Responsibilities:

  • Create, develop, and implement solutions to address cloud infrastructure and security compliance requirements.
  • Create reusable CI/CD deployment patterns using Atmos, Spacelift, and ArgoCd.
  • Implement continuous container image vulnerability scanning against AWS ECR and JFrog registry using JFrog.
  • Enforce Github action workflows to perform daily IAC (terraform, docker, and helm) static scanning for all repos using TFsec.
  • Develop and deploy custom workflows for pre-commit and code merge actions to prevent risky container and IAC vulnerabilities using open-source scanners such as TFsec and Checkov.
  • Build and maintain enterprise OPA gatekeeper resource policies, leveraging Atmos and Gomplate to implement best practices for K8s on areas of network security, encryption, and access controls.
  • Create and align configuration drift and scanning policies against industry standards such as CIS Kubernetes benchmarks, NIST 800-63, or SOC 2.
  • Define playbooks for handling policy violations and misconfigurations in Kubernetes clusters.
  • Integrate centralized log collection against the DevOps techstack using Prometheus and Grafana.
  • Document and publish DevSecOps best practices and solutions as it relates to secure SDLC.
  • Troubleshoot, identify, and fix problems related to CI/CD compliance quality gate checks and critical and high vulnerability remediation.
  • Train and educate cross-functional team members on shift-left development processes and secure coding and cloud security policies.

Required Qualifications:

  • 2+ years working with DevOps orchestration solutions such as ArgoCD and Spacelift.
  • 3+ years with Gatekeeper Open Policy Agent and Rego policy expression writing.
  • 3+ years working with JFrog.
  • 3+ years working with open-source scanners such as TFSec and Checkov.
  • 4+ years working with Terraform and Helm.
  • 6+ years performing DevOps automation across various technology stacks and cloud providers.
  • 6+ years implementing large-scale, end-to-end technology solutions in an enterprise setting.

Preferred Qualifications:

  • Comprehensive technical experience working with DevSecOps toolkits, including GitHub Actions, Ansible, Atmos, Terraform, ArgoCD, Spacelift, JFrog, TFsec, Checkov, Gatekeeper OPA, or comparable technologies.
  • Familiarity with cloud-native monitoring tools (e.g., Prometheus, Grafana).
  • Knowledge of advanced Kubernetes security features like pod security admission controllers.
  • Familiarity with information security frameworks and standards such as CIS, NIST, and CSA.
  • Practical experience demonstrating shift-left approaches with development teams and communicating best practices.
  • Certifications: Certified Kubernetes Administrator (CKA), Certified Kubernetes Security Specialist (CKS), or related.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job

Role: Principal DevSecOps Engineer

Location: Remote

C2C

Primary Responsibilities:

  • Create, develop, and implement solutions to address cloud infrastructure and security compliance requirements.
  • Create reusable CI/CD deployment patterns using Atmos, Spacelift, and ArgoCd.
  • Implement continuous container image vulnerability scanning against AWS ECR and JFrog registry using JFrog.
  • Enforce Github action workflows to perform daily IAC (terraform, docker, and helm) static scanning for all repos using TFsec.
  • Develop and deploy custom workflows for pre-commit and code merge actions to prevent risky container and IAC vulnerabilities using open-source scanners such as TFsec and Checkov.
  • Build and maintain enterprise OPA gatekeeper resource policies, leveraging Atmos and Gomplate to implement best practices for K8s on areas of network security, encryption, and access controls.
  • Create and align configuration drift and scanning policies against industry standards such as CIS Kubernetes benchmarks, NIST 800-63, or SOC 2.
  • Define playbooks for handling policy violations and misconfigurations in Kubernetes clusters.
  • Integrate centralized log collection against the DevOps techstack using Prometheus and Grafana.
  • Document and publish DevSecOps best practices and solutions as it relates to secure SDLC.
  • Troubleshoot, identify, and fix problems related to CI/CD compliance quality gate checks and critical and high vulnerability remediation.
  • Train and educate cross-functional team members on shift-left development processes and secure coding and cloud security policies.

Required Qualifications:

  • 2+ years working with DevOps orchestration solutions such as ArgoCD and Spacelift.
  • 3+ years with Gatekeeper Open Policy Agent and Rego policy expression writing.
  • 3+ years working with JFrog.
  • 3+ years working with open-source scanners such as TFSec and Checkov.
  • 4+ years working with Terraform and Helm.
  • 6+ years performing DevOps automation across various technology stacks and cloud providers.
  • 6+ years implementing large-scale, end-to-end technology solutions in an enterprise setting.

Preferred Qualifications:

  • Comprehensive technical experience working with DevSecOps toolkits, including GitHub Actions, Ansible, Atmos, Terraform, ArgoCD, Spacelift, JFrog, TFsec, Checkov, Gatekeeper OPA, or comparable technologies.
  • Familiarity with cloud-native monitoring tools (e.g., Prometheus, Grafana).
  • Knowledge of advanced Kubernetes security features like pod security admission controllers.
  • Familiarity with information security frameworks and standards such as CIS, NIST, and CSA.
  • Practical experience demonstrating shift-left approaches with development teams and communicating best practices.
  • Certifications: Certified Kubernetes Administrator (CKA), Certified Kubernetes Security Specialist (CKS), or related.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job