About the Role:

We're seeking a talented DevSecOps Engineer to join the NG SIEM Onum team and work directly with our security and infrastructure leadership. This role is critical in embedding security-first practices into our development lifecycle while maintaining the agility and speed that defines our innovation culture. You'll be instrumental in securing our CI/CD pipelines, infrastructure, and applications while enabling developers to ship secure code faster.

What You'll Do:

Security Integration & Automation (40%):

• Embed security controls throughout the entire DevOps lifecycle, from code commit to production deployment

• Design and implement automated security gates within CI/CD pipelines using tools like GitHub Actions, Jenkins, or GitLab CI

• Build security-as-code frameworks that make secure practices the default path for developers

• Automate compliance checks and security policy enforcement across cloud infrastructure (AWS, GCP)

• Develop custom security tooling to address Onum specific security requirements

Vulnerability & Risk Management (25%):

• Proactively identify and remediate security vulnerabilities in applications, containers, and infrastructure

• Conduct threat modeling for new services and features before they reach production

• Perform risk assessments on architectural decisions and third-party integrations

• Manage vulnerability lifecycle from detection through remediation, tracking metrics and SLAs

• Implement and maintain vulnerability scanning tools integrated into development workflows

Security Testing & Validation (20%):

• Execute comprehensive security testing including SAST, DAST, SCA, and container security scanning

• Perform code reviews with a security lens, identifying potential vulnerabilities before merge

• Validate security controls through continuous testing and red team exercises

• Establish security testing standards and ensure coverage across the project

Incident Response & Collaboration (15%):

• Help to respond to security incidents affecting Onum’s infrastructure and applications

• Collaborate with CrowdStrike SOC and incident response teams during security events

• Conduct post-incident reviews and implement preventive measures

• Work cross-functionally with development, operations, and security teams to foster shared security responsibility

• Partner with the Manager on strategic security initiatives and architectural decisions

What You'll Need:

Technical Expertise:

• 3+ years of experience in DevOps, Security Engineering, or related roles

• Strong programming skills in Python, Go, or similar languages for automation and tooling

• Deep knowledge of cloud platforms, particularly AWS (EC2, S3, VPC, Security Groups, CloudTrail)

• Hands-on experience with:

  • Containerization: Docker, container security best practices

  • Orchestration: Kubernetes, EKS, security policies, RBAC

  • IaC: Terraform, CloudFormation, security scanning for IaC

  • CI/CD: GitHub Actions, Jenkins, GitLab CI, security pipeline integration

  • Configuration Management: Ansible, Chef, or Puppet

Security Knowledge:

• Strong understanding of:

  • OWASP Top 10 and secure coding practices

  • Network security, firewalls, ACLs, and segmentation

  • Secrets management (HashiCorp Vault, AWS Secrets Manager)

  • Security compliance frameworks (SOC 2, ISO 27001, NIST)

• Experience with security tools:

  • Vulnerability scanners (Nessus, Qualys, Rapid7)

  • SAST/DAST tools (SonarQube, Checkmarx, Burp Suite)

  • Container security (Trivy, Aqua, Twistlock)

  • SIEM and log analysis

  • Git security scanning (GitGuardian, TruffleHog)

Soft Skills:

• Excellent communication - ability to explain complex security concepts to developers and leadership

• Collaborative mindset - security is a team sport at CrowdStrike

• Problem-solving orientation - creative approaches to balancing security and developer velocity

• Self-motivated - ability to work independently and drive initiatives to completion

• Adaptability - comfortable in a fast-paced, innovative environment

Bonus Points:

• Security certifications: AWS Security Specialty, CKS (Certified Kubernetes Security Specialist), Certified DevSecOps Professional (CDP), GIAC Cloud Security Automation (GCSA) or equivalen security certifications.

• Contributions to open-source security projects

• Familiarity with zero-trust architecture principles

#LI-MB1

Benefits of Working at CrowdStrike:

• Remote-friendly and flexible work culture

• Market leader in compensation and equity awards

• Comprehensive physical and mental wellness programs

• Competitive vacation and holidays for recharge

• Paid parental and adoption leaves

• Professional development opportunities for all employees regardless of level or role

• Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections

• Vibrant office culture with world class amenities

• Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.