DevSecOps Engineer at Flutterwave
About the role
The DevSecOps Engineer will be responsible for the security of the developer environment. Primary responsibility for the security of the DevOps lifecycle.
The key responsibilities of the role are as follows:
Own security within the development process
Lead remediation activities to secure the developer environment.
Partner with stakeholders within the development environment on security solutions to sustain risk mitigations after the remediation phase is completed.
Own the strategic direction of the broader program to securing Flutterwave's developer environment and build pipelines.
Conduct regular meetings with risk owners to inform and alert them of any risk arising Planning, preparing, and hosting technical support forums
Candidates will be evaluated based on their ability to perform the duties listed above while demonstrating the skills and competencies necessary to be highly effective in the role. These skills and competencies include:
Secure by design mindset
Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
An ability to effectively influence others to modify their opinions, plans, or behaviors
An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
An understanding of organizational mission, values, and goals and consistent application of this knowledge
Technical expertise in system security vulnerabilities and remediation techniques, network and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, etc.)
Strong understanding of SAST and DAST.
Technical expertise in security engineering, system and network security, authentication and security protocols, cryptography, and application security
Candidates will be evaluated primarily upon their ability to demonstrate the competencies required to be successful in the role, as described above. For reference, the typical work experience and educational background of candidates in this role are as follows:
BS in Computer Science, Information Security, or a related field
5+ years of experience in information security, especially in a vulnerability analysis role on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC)
5+ years of experience using at least one scripting language (e.g.: Perl, Python, PowerShell)
Why you should join Flutterwave
Flutterwave is a global payments technology company that helps businesses to make and accept payments from anywhere in Africa, on a single platform. Our technology is a one stop shop for companies looking to go global and scale with ease when it comes to payments.
Since launching in 2016, Flutterwave has processed over $3.6B across 84M transactions for clients such as Uber, Booking.com, Flywire, Transferwise among others.