engineer, computer (except software)
Title posted on CareerBeacon -
Engineer II
Posted on
June 28, 2024
by
Employer details
TD Bank
Job details
Work Location:Toronto, Ontario, CanadaHours:37.5Line of Business:Technology SolutionsPay Details:We're committed to providing fair and equitable compensation to all our colleagues. As a candidate, we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions, including pay details for this role.Job Description:The DevSecOps Engineer is an engineering role to help support, secure, manage and deploy solutions that support TD Bank's software delivery initiatives. The role is highly technical, and candidates must possess a solid understanding of information security, cloud infrastructure, software, and various reference architectures. The role also requires an understanding of clients' business goals, product strategy and operational requirements in a highly secured/governed environment.The DevSecOps engineer supports continuous integration and continuous deployment (CI/CD) initiatives and is an integrated team member working with software developers, product engineers, cybersecurity engineers and systems administrators. The DevSecOps engineer acts as a liaison with business stakeholders to understand the strategy and execution outlook. The role is heavily security-focused and ingrained in the CI/CD pipeline automation to deliver security and privacy by design principles and validation throughout the software lifecycle.DevSecOps engineers have a strong work ethic, perform analytical and critical thinking, and are masterful at meeting change requests on demand. They are expected to work well with business units and possess superior listening and communication skills, in addition to expected technical expertise. DevSecOps engineers embody security-first principles, constantly assess the threat landscape, and adapt quickly to manage enterprise risk, as well as integration, configuration, and deployment requirements.Job Responsibilities Build relationships with developers, stakeholders, and pod leaders to incorporate security principles into engineering design and deployments.Implementation, testing and validation of application security controls across projects through automation workflows in CI/CD.Implementation of defensive configurations and countermeasures across cloud infrastructure and applications.Recommend services and tools to enable developers and engineers to easily use security components produced by application security team members.Simplify automation that applies security inter-workings with CI/CD pipelines.Support the ability to "shift left" and incorporate security early on and throughout the development lifecycle including threat modeling and developer IDE security features.Assist prioritization of vulnerabilities identified in code through automated and manual assessments and promote quick remediation.Join forces and provision security principles in architecture, infrastructure, and code.Regularly research and learn new tactics, techniques and procedures in public and closed forums, and work with colleagues to assess risk and implement/validate controls as necessary through the CI/CD pipeline.Enrich DevOps architecture with security standards and best practices, promote baseline configuration and work to reduce drift.Partner with teams to define key performance indicators (KPIs), key risk indicators (KRIs) and distribute useful program metrics across business units.Perform other duties as assigned.Job ExperienceAt least 7+ years experience in information technology, information security administration or security operations.Experience working with development and infrastructure teams in agile workflows, including Scrum and Kanban.Understanding of containerized compute (e.g., Docker) and container orchestration (e.g., Kubernetes)Experience with Nexus IQ, GitHub Advanced Security, SonarQube, Terraform, Jenkins, and Ansible.Experience with operations and security across Amazon Web Services (AWS), Microsoft Azure and Google Cloud Platform (GCP).Ability to obtain and maint
-
LocationToronto, ON
-
SalaryNot available
-
Terms of employment
Full time
- Start date
Starts as soon as possible
- vacancies
1 vacancy
- Source
CareerBeacon
#2090624
Advertised until
2024-07-28
Important notice: This job posting has been provided by a partner site. Job Bank is not responsible for this content.
Report a problem with this job posting
Thank you for your help!
You will not receive a reply. For enquiries, please contact us.