DevOps Engineer

Who Are We Looking For

• Proven experience in DevOps, security engineering, or cloud security, preferably on Google Cloud Platform (GCP).
• Strong understanding of cloud security principles and best practices.
• Familiarity with CI/CD tools (e.g., Jenkins, GitLab CI/CD) and security tools (GCP SCC, Qualys , etc..)
• Knowledge of scripting and automation (Python, Bash, etc.).
• Experience with Linux operating systems or with GCP services (GCE, GKE, ....)
• Relevant security certifications (e.g., CISSP, CCSP, CISM, etc.) are a plus.
• Excellent communication skills with the ability to translate complex technical concepts to non-technical stakeholders.
• Fluent in English
• Ability to work independently and as part of a team.
• Strong analytical and problem-solving skills.

• Monitoring & resolution: Utilize Google Cloud security tools and WL central tools to monitor, log, and analyse system vulnerabilities, events and incidents. Support the DevOps teams in the resolution or mitigation of these vulnerabilities
• Incident Response: Assist the WL security teams and DevOps Teams in developing and implementing incident response plans and protocols to ensure effective responses to security incidents.
• Design & implementation: Design, implement, and maintain operational solutions (security, network, system, db...) on GCP, including the configuration and management of GCP security services (Cloud Security Command Center, Security Health Analytics, DB, GKE, etc.).
• Training & Awareness: Provide training and guidance to development and operations teams on security best practices, tools, and recent threats.
• Documentation: Develop and maintain security documentation, including procedures, runbooks and best practices for cloud security.
• Collaboration: Work closely with DevOps teams to design and implement secure application architectures, leveraging Google Cloud's best practices. Work closely with FS- & Group- Second Line Security.
• Compliance: Assist in maintaining compliance with industry standards and regulations (e.g., PCI, ISO, GDPR,DORA, NISv2, etc.) relevant to cloud security.
• Security Integration: Integrate security practices into the DevOps workflow, ensuring security considerations are included in the design, development, deployment, and operational processes.