Automation of IT security controls and platforms and integration within the SDLC
- Ensuring security issues are identified early in the development lifecycle.
- Integration and software development of Security Solutions in support of the business.
- Design and delivery of Security Solutions as on-demand services
- Support and maintain developed solutions and their supporting platforms
- Daily administrative tasks, reporting and communication with the relevant departments in the organization
- Assist in operational handover of delivered solutions, as applicable.
Analysis, design, and implementation of IT Security Solutions and supporting infrastructure
- Partake in technical design reviews, integration, testing, and documentation work
- Conduct research and development (R&D).
- Document security architecture, designs, and processes as applicable.
- Interface with the various IT architects to understand the technical requirements.
- Adhere to Capitec Policies, SDLC principles and processes, Agile processes, and way of working
KNOWLEDGE, SKILLS & EXPERIENCE
Minimum:
- Expert knowledge of:
- Experience working in a DevOps environment.
- Experienced in PowerShell and Python
- Working Knowledge of JSON templates.
- Experience developing RESTful services and API
- Experience with authentication and Authorization technologies OAuth 2.0, OpenID Connect, SAML)
- OpenAPI Specification
- A sound understanding of:
- IT systems development processes (SDLC lifecycle).
- Business compliance requirements
- IT Operations
- Working knowledge of CLIs, Shell
- Agile/Scrum environment
Ideal:
- Expert knowledge of:
- Design and deployment of highly available, enterprise-scale cloud infrastructure.
- Understanding of Cloud Security technologies and best practices.
- Understanding of Networking in cloud environments.
- Proven experience in any of the following: Java, Go, C#
- Experience working with scripting and provisioning tools like Terraform, CloudFormation or Ansible
- Application design principles
- Experience working with CI/CD tools.
- Experience in supporting and enhancing build and release processes through automation using a combination of processes and existing tools.
- A sound understanding of:
- Secure coding practices.
- Experience developing and supporting infrastructure and cloud capabilities for microservices-based architectures.
- Advance knowledge and hands-on experience with Public Cloud (IaaS, PaaS, SaaS) and Infrastructure as Code capabilities.
- Developing for Windows Platforms, .Net and Active Directory, LDAP, and Kerberos
- Working knowledge of Windows and Linux operating systems
- Identity and access management principles, authentication, and authorization best practice.
- Encryption technologies
- Knowledge Data Loss Prevention, Security Audits, etc.
Skills
- Communication skills (written and verbal) in English
- Computer literacy
- Consultation, facilitation, and presentation skills
- Negotiation and influencing skills
- Analytical, conceptual, and diagnostic skills
- Attention to detail
- Planning and organizing skills
- Demonstrate initiative, proactive attitude and a continuous improvement mind set
- Ability to work under pressure
- Leadership skills
- Team player