Head of DevSecOps Senior Info Sec Officer

Responsibilities
As Head of DevSecOps, you’ll need to:

Lead the deployment and optimization of Terraform, Kubernetes (including AKS), Flux, GitHub Actions, and GCP to manage secure, scalable cloud environments.
Design and manage advanced Kubernetes networking solutions and virtual network architectures to ensure secure and efficient data flow between containers and virtual machines across multiple cloud environments.
Oversee the configuration and management of virtual machines and virtual networks, ensuring they are optimized for high availability and compliance with security standards.
Develop and enforce automated workflows with GitHub Actions to maintain security protocols and streamline development processes across virtual and cloud-based platforms.
Monitor cloud resource costs and system observability to ensure efficient resource utilization and proactive management of operational issues.
Facilitate the development and implementation of robust multi-cloud architectures, focusing on security and operational flexibility across various platforms including Azure and Google Cloud.
Lead strategic discussions on cloud security, virtual network strategies, DevSecOps tool integration, and effective resource management.
Mentor team members in best practices for managing virtual networks, virtual machines, and secure, efficient use of DevSecOps technologies.
Implement security best practices throughout the SDLC, including code reviews, static and dynamic analysis, vulnerability scanning, and penetration testing.
Design and implement automated security testing and monitoring tools to identify vulnerabilities and security weaknesses. 
Develop and maintain security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.
Monitor systems and networks for security breaches, investigate security incidents, and develop response strategies to mitigate risks.
Provide security guidance and support to development and operations teams, including training and awareness programs.
Stay up to date with the latest security threats, vulnerabilities, and trends, and recommend appropriate countermeasures and solutions.
Participate in incident response activities and contribute to the development of incident response plans and playbooks.
Collaborate with cross-functional teams to promote a culture of security awareness and continuous improvement.
aybooks.
Collaborate with cross-functional teams to promote a culture of security awareness and continuous improvement.

Qualifications

Bachelor’s degree in Computer Science, Information Security, or related field; with at least 7 years of experience in DevOps and/or cybersecurity roles.
Extensive leadership experience in managing DevSecOps operations, particularly with a strong focus on virtual networks, virtual machines, Terraform, Kubernetes, Flux, GitHub Actions, AKS, and GCP.
Expert knowledge of networking concepts, particularly in virtual and cloud settings, including security configurations and multi-cloud architectures.
Strong understanding of software development methodologies (Agile, Scrum, etc.) and DevOps principles.
In-depth knowledge of security concepts, protocols, and technologies (encryption, authentication, access control, etc.).
Hands-on experience with security tools and technologies, such as vulnerability scanners, intrusion detection/prevention systems, SIEM, etc.
Proficiency in scripting and programming languages (Python, PowerShell, Bash, etc.) for automation and tool development.
Hands-on experience on Infrastructure automation tools like Terraform, Kubernetes, and Ansible.
Experience with cloud platforms (AWS, Azure, GCP) and containerization technologies (Docker, Kubernetes).
Certifications such as CISSP, CISM, CEH, CompTIA Security+, or relevant vendor-specific certifications are a plus.
Excellent communication and collaboration skills, with the ability to work effectively in a cross-functional team environment.

Skills

Strategic and analytical thinking with outstanding leadership capabilities.
Deep technical expertise in virtual networks, virtual machines, and complex cloud environments.
Strong communication and team management skills.
Expertise in cloud resource cost monitoring and system observability.

go to method of application »

Kindly share CV to talent@workforceafrica.co

Apply via :

talent@workforceafrica.co