Senior DevSecOps Engineer

🔥 5 hours ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Airalo

WebsiteLinkedInAll Job Openings

51 - 200 employees

📡 Telecommunications

Telecommunications • Technology • Travel

Airalo is the world's first eSIM store that provides digital SIM cards (eSIMs) to travelers in over 200 countries and regions globally. The company offers an innovative solution to avoid high roaming charges by allowing users to purchase and activate eSIMs via its app, ensuring instant connectivity without the need for physical SIM cards. Airalo caters to various travelers by providing local, regional, and global eSIMs with transparent, prepaid pricing plans, supported by 24/7 customer service. The platform also supports partnership through APIs and offers incentives such as referral credits. Airalo represents a modern approach to global mobile connectivity, making it an essential tool for frequent travelers.

📋 Description

• Design, implement, and manage security solutions across the entire software development lifecycle (SDLC), with a focus on automation and continuous integration/continuous delivery (CI/CD) pipelines, including robust API security measures and authentication protocols. • Champion security best practices within engineering, DevOps, SRE, and IT teams, fostering a culture of shared responsibility for security. • Proactively identify and remediate security vulnerabilities in applications, mitigating OWASP Top 10 vulnerabilities, infrastructure, and cloud services through threat modelling, vulnerability assessments, and penetration testing. • Develop and maintain security monitoring and alerting solutions to detect and respond to potential security incidents in real-time and prevent common cyber attacks such as DDoS, injection attacks, and credential stuffing. • Define and enforce secure coding standards and provide training and mentorship to development teams on DevSecOps principles. • Lead compliance initiatives by contributing to security policies, controls, and audit readiness for SOC 2, ISO 27001, GDPR, and other relevant regulations.

🎯 Requirements

• Bachelor's degree in Computer Science, Cybersecurity, or a related field. • 5+ years of experience in DevSecOps, Security Engineering, or a similar role with a strong focus on cloud security. • 3+ years of hands-on experience with AWS services, including expertise in container orchestration, IAM, and security best practices. • 2+ years of experience with Kubernetes, including securing Kubernetes clusters and deployments. • Deep understanding of SAST, DAST, and container security solutions, and API security testing tools, along with experience implementing and managing these tools. • Proven experience in vulnerability assessment, threat modelling, and remediation techniques. • Experience with security incident response, including developing incident response plans and conducting post-mortems. • Proficiency in at least one programming language (Python, Go, Java, etc.) for automation and tooling. • Proficiency in infrastructure-as-code tools (e.g., Terraform) and CI/CD platforms (e.g., GitHub Actions, Jenkins). • Excellent communication and collaboration skills with the ability to work effectively in a fast-paced environment.

🏖️ Benefits

• remote work • generous PTO • wellness and learning allowances • annual Airalo Away retreat