Evergreen Life logo

Cyber Security / DevSecOps Engineer

Engineering

/

Manchester Office, remote friendly

/

Full-Time

We’re looking for a driven and dependable SecOps Engineer to lead on security best practice, SecOps automation, monitoring and deployment. Your ‘Cloud 1st’ deliveries will use a combination of Open Source and best of breed products to automate the delivery of highly available and resilient solutions.

This role will suit a hands-on SOC Analyst wishing to develop their automation skills by working within the DevOps team or a DevOps engineer with good security credentials wishing to branch into DevSecOps.

You’ll get the opportunity to work on the latest devices, from mobiles to wearables, finding ways to streamline their operation and empowering people to take control of their own health, wellbeing and fitness data. You’ll join a team devoted to the development of a highly rated iOS & Android App and the cloud infrastructure to support it.

Responsibilities

  • Secure and assure Cloud environments working with Agile product teams as they deploy digital solutions in IaaS, PaaS and SaaS environments.    
  • Review system and application architectures with development teams ensuring systems comply withNCSC Cloud Security guidance and ISO27001.
  • SecOps automation of infrastructure, services and artefacts including AWS landing zones, security products, certificates, secrets management, monitoring & alerting platform.
  •  Investigates security events in accordance with established procedures and recommend required actions.
  • Carry out risk assessments and risk management.
  • The assessment of organisational vulnerabilities using pro-active governance and monitoring tooling.
  • Receive and responds to routine requests for security support. Assist in the investigation and resolution of issues relating to access controls and security systems.
  • Provides guidance in defining access rights, privileges and data classification and management.
  • Provide authoritative advice and guidance on the planning and execution of vulnerability tests. Define and communicate the test strategy.Perform internal basic penetration tests and manage in depth external testingvia independent 3rd parties.

Required skills

  • Hands on experience in securing cloud systems including implementation and configuration of firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering,SIEM etc.
  • Amazon Web Services IaaS, PaaS, aws cli.
  • Application of Site Reliability Engineering & DevOps principles.
  • Security industry certifications such as CEH, CCSP, CISM,CISMP, CISA, CISSP. Cloud Certifications for AWS (Security/Associate/Architect/DevOps).
  • Maintain current knowledge of malware attacks and other cyber security threats.
  • Deployment Pipelines.
  • Agile development methodologies.

Desirable and additional skills

  • Containers, Serverless environments, API Gateways.
  • Terraform, CloudFormation, Azure DevOps, AWS Code Deploy.
  • Trend Deep Security as a Service.
  • MongoDB, Mongo Atlas.
  • Azure AD, Office365.

About us

We’re putting the individual at the heart of healthcare so they can feel better informed and more in control of their health. It’s about people being in control of their health information and being able to share it with whomever they choose, in order to get the health and care they want.

"Empowering people with access to personalised health and wellbeing information, so that they can make informed decisions and increase their healthy and happy years”

Benefits

  • Remote working - As working from home has become the 'new normal,' we'll help you get set up with the right equipment to do your best work remotely
  • Wellness plan - Money off everyday healthcare costs and services to support your wellbeing - think discounted dentist and optician bills, physio, and counselling.
  • Flexible time off - Even if you love your job, everybody needs a rest. That's why we encourage everyone to take regular days off to unwind and recharge.

Include any information you think might be helpful to us: A cover letter, CV and any links to your portfolio or examples of your work