ADP is hiring a Lead DevSecOps Engineer!Are you empathetic to client needs and inspired by transformation and impacting the lives of millions of people every day?Are you looking to join a dynamic, inclusive team environment with a culture of collaboration and belonging?Well, this may be the role for you.
Ready to design what's next?As the Tech Lead in DevSecOps , you'll wear multiple hats throughout the day, balancing operational tasks, technical leadership, and tactical decision-making.
Your day will likely involve a mix of automation, troubleshooting, security enforcement, and collaboration across various teams.You will start your day with a quick stand-up meeting, where you'll check in with your teammates, review progress from the previous day, and address any blockers.
Every week, you will be involved in the replenishment for the next week.It will be your responsibility to ensure that the environment remains PCI-compliant.
You'll spend significant time managing security tools, responding to vulnerabilities, and improving the DevSecOps processes.
To succeed in that task, you must dive into hands-on work with Ansible and Terraform , writing automation scripts or maintaining existing ones, which can also be Python or shell-based.
You may be building golden images or automating compliance checks across your cloud environments in AWS .Analyze and address audits for the PCI-compliant environment and respond to any vulnerabilities or issues flagged by security tools (like SonarQube , Qualys ).
You'll work closely with these tools, ensuring the automation of remediation steps, and minimizing manual intervention where possible.
You will also dedicate time to evolving the DevSecOps processes.
This could involve researching new tools and techniques to automate vulnerability scanning, improve the efficiency of remediation workflows, or further secure the cloud environments.WHAT YOU'LL DO:You'll start each day with a Kanban meeting, working in a team to understand responsibilities, identify issues, and communicate coding priorities while choosing user stories to complete.Secure your Environment.
As an experienced leader, you must have advanced knowledge of key AWS services (EC2, S3, RDS, Lambda, IAM, VPC, etc.)
and best practices for cloud security.
You'll need to be hands-on with PCI-compliant environments and managing vulnerability cycles (identification, remediation, and mitigation).NoOps Oriented.
You will use your technical expertise to automate with CloudFormation, Ansible, Terraform playbooks, and automation scripts (Python / shell) for configuration management and provisioning of environments.Variety of work.
There is no typical day.
You could be checking in with a team in India or the United States, meeting with leadership to review initiatives for the coming quarter, and handling a few ad hoc requests from your peers in other departments.Influence and inspire confidence.
You are comfortable presenting to senior leaders, product owners, and peers with a compelling voice that you demonstrate through executive presence, leading change, and creating clear executive-level communications on milestone achievements.You have 8-12 years of experience in relevant skills gained and developed in the same or similar role.TO SUCCEED IN THIS ROLE:You'll have a Bachelor's degree OR equivalent.NIST , ISO27001 , PCI DSS Compliance : Hands-on experience with PCI-compliant environments and managing vulnerability cycles (identification, remediation, and mitigation) for OS and Non OS Patch.TSL/SSL and Cryptographic Standards : Have hands-on experience with TSL/SSL and cryptography lifecycle (identify and mitigate risks from deprecated algorithms or vulnerabilities).DevSecOps : In-depth understanding and experience integrating security practices into the software development lifecycle, from secure coding to automated deployment of security measures.CI/CD Tools : Experience with CI/CD pipelines, preferably using Jenkins.GitFlow fluency : Experience with the gitflow process using any GIT-like tool.Monitoring and Security : Familiarity with monitoring tools (CloudWatch, Dynatrace, Splunk, etc.)
and vulnerability scanning tools (SonarQube, Qualys, etc.
).Java Basic : Basic knowledge of Java applications.Network Basic : Understanding of PCI segmentation and firewall rules.WAF : Experience with WAF Management and configuration (Akamai solution) will be considered a differential.YOU'LL LOVE WORKING HERE BECAUSE YOU CAN:Have courageous team collaboration.
Courage comes from how associates are willing to have difficult conversations, speak up, be an owner, and challenge one another's ideas to find the best solution.Deliver at epic scale.
We deliver real user outcomes using strong judgment and good instincts.
We're obsessed with the art of achieving simplicity with a focus on client happiness and productivity.Be surrounded by curious learners.
We align ourselves with other smart people in an environment where we grow and elevate one another to the next level.
We encourage our associates to listen, stay agile, and learn from mistakes.Act like an owner & doer.
Mission-driven and committed to leading change, you will be encouraged to take on any challenge and solve complex problems.Give back to others.
Always do the right thing for our clients and our community and humbly give back to the community where we live and work.Join a company committed to equality and equity.
Our goal is to impact lasting change through our actions.What are you waiting for?
Apply today!#J-18808-Ljbffr