DevSecOps Engineer

Description:
We are seeking a highly motivated professional with experience in Security and Privacy to join our dynamic team. As a PSPO DevSecOps Engineer, you will help with threat modeling,
application security posture management, security orchestration, vulnerability & weakness assessments to improve resilience of the organization and its product portfolio.

Responsibilities:

1. Develop security-as-code & policy-as-code pipelines
2. Manage vulnerabilities (3rd party) and weaknesses (1st party) in Roche products,
   evaluating the criticality for an adequate prioritization and providing the most suitable
   remediation, working directly with the product teams as a trusted advisor
3. Conduct vulnerability monitoring, (on-demand) vulnerability scanning and other security
   testing activities
4. Provide expertise to product teams and Affiliates to answer inquiries, pre-sales requests,
   contract negotiations and other cybersecurity-related customer support
5. Contribute to initiatives within the Diagnostic Division to achieve the integration of
   defense capabilities into the development of new products and in the update/upgrade,
   maintenance and support of existing products in collaboration with Product Support teams.
6. Develop and automate technical workflows for investigations and assessments for cyber
   security vulnerabilities and drive onboarding of new products in Vulnerability Monitoring,
   and provide training to relevant stakeholders in the organization regarding Vulnerability
   Handling and Incident Response.
7. Develop, maintain and continuously optimize processes, playbooks and tools for
   Vulnerability Monitoring, Vulnerability Management, Incident Response, Threat
   Intelligence and Security Testing.
8. Evangelize security and privacy developing Security Champions across departments
   involved in the product development and operations
9. Maintain the product security controls and awareness supporting other PSPO Chapters
   (Solution Architecture, Product Support and Compliance/Privacy).

Requirements:

1. Minimum 3 years of related work experience in SDLC & cloud ops
2. Demonstrated soft skills: problem solving, leadership, communication, teamwork,
   flexibility and adaptability.
3. Team player, proactive, self-driven, self-motivated, solution-oriented, hands-on.
4. Demonstrated experience in Cloud computing technologies, full stack deployments etc.
5. Demonstrated experience in K8S, AWS or GCP, Docker and other cloud native tools
6. Demonstrated experience in Jenkins/ArgoCD/Tekton or another common CI/CD tool
   chain
7. Demonstrated skills in Sigstore, SBOM, SLSA and secure software supply chain
   management.
8. Ability to develop Terraform, K8S manifests or other forms of infrastructure as code
9. Ability to codify Rego or Cedar policies
10. Demonstrated experience in SAST & DAST tools (Checkmarx, Snyk, Mayhem,
    BurpSuite, ZAP etc)
11. Demonstrated experience automating security controls (eg shell scripting, python)
12. In-depth experience in managing information security and privacy risks and threat
    modeling.
13. In-depth experience in vulnerability handling pre and post-market launch
14. In-depth experience in system and cloud infrastructure hardening
15. Strong understanding of industry standards: ISO 27000 family and HITRUST
16. BA/BS in Business, Information Systems, Computer Science or a related relevant area
    of study is a plus
17. Certifications are a plus: SANS GIAC (GCIH, GPEN, GCIA, GCFA and others), CEH,
    CISSP, CISA, CISM, LA ISO27001

Location:  Remote Position - Prefer Candidates Located in the East Coast

Pay Range: $100.00/hour-$105.00/hour

Benefits: Medical, Dental, Vision, 401K (provided minimum eligibility hours are met)

Diversity and Inclusion: Magnit has an ongoing commitment to the diversity and inclusion of all team members. We believe that embracing diversity leads to innovation and helps address the needs of the business. We welcome individuals from different backgrounds, experiences, and cultures to join our team. We value this diversity and strive to create an inclusive environment that celebrates these unique perspectives, allowing you to contribute to your full potential. Finally, but most importantly, we expect all team members to be treated with dignity and respect.

If you have a disability and need an accommodation in relation to the online application process, please email us at