DevSecOps Developer

LocationMontreal
Job CategoryInformation Technology
SP-ID19340
Position TypeContract
Application Deadline September 30, 2019
Experience Required4 years
Job Duration3 months
Education RequiredBachelors

Our client in Banking & Finance industry is seeking a DevSecOps Developer in Montreal. This is a 3 months contract position.
 
Job Description
 
You are an actor in our DevOps revolution and you have the task of deploying DevOps best practices through the use of the best tools. You are an applied person (hands-on), having an Agile mentality. You know all the DevOps fields, are an expert in the command line and you see solutions and optimizations where all the others see problems. Your goal is to automate everything with a particular concern for the security aspects!
 
Your role
You are actively participating in the realization of our DevOps vision by integrating all of these components into our delivery pipelines. It means using your technical prowess to effectively integrate our tools into our product pipelines. In concrete terms, you work with members of your team to develop security solutions such as:
• Automation of the full life cycle management of application certificates: creation, revocation, renewal (at Let’s Encrypt)
• Management of application secrets using vault solutions (ex: Hashicorp Vault)
• Optimization of identity management solutions
• Complete management of flow openings using Infrastructure as code
• Integration of security scanning solutions
• Securing the various processes of the CI-CD (example: signing Docker images)
Here is the technological environment in which you will evolve at the beginning:
• Collaboration (JIRA / Confluence)
• Source code management (Git-Bitbucket)
• Continuous integration servers (Jenkins 2 with pipeline concept as code)
• Artifact Management (Nexus, Artifactory)
• Report and dashboards (SonarQube)
• Provisioning (Ansible, Terraform)
• More provisioning and orchestration tools (Docker / k8s)
• Deployed on multi-cloud environments (private with OpenShift, public with AWS, GCP-GKE)
• Application monitoring (AppDynamics, Datadog, etc.) to measure all these great applications and ensure that they deliver the expected business value to our customers

As a DevSecOps Integrator, you are a generalist on everything related to DevOps, but you have a specialty in security.
 
Your main responsibilities
• Develop security solutions using your developer skills and security knowledge.
• Everything you do as development uses the paradigms of everything as code and your commits trigger complete CI-CD pipelines up to production
• Everything you develop is tested in an automated way, at the right level according to the needs and contexts.
• Everything you put in production is monitored so that you can react automatically in case of problems (blue-green patterns and / or canary deployments)
• Everything you put into production follows the best practices favoring high availability (HA)
• You cooperate with the bank’s security groups to ensure that the solutions developed can be operated by them in the future
 
What you should have to apply
• Bachelor’s degree related to industry and 3-5 years of relevant experience
• Bilingualism (spoken / written) French and English preferable, but not required
• You know what is the “Periodic table of DevOps tools” (and if not, when you will see it, you will understand!) And you master at least one tool per category of this table
• You have an above-average understanding of safety
 
To apply, send your updated resume to: k.sinha@maxsys.ca
Candidates must be in Canada and with valid work permit for being able to apply for this role.