Sr. DevSecOps Engineer in Bucuresti

Resideo is seeking an enthusiastic, passionate professional to work closely with our internal development teams to ensure we build in security from day one. Ideally you will have a solid development background and have progressed to be a security authority on cloud (. AWS and Azure) services, build/release management and automating security processes in a CI/CD pipeline. Your major goal will be to help the Cyber Security Team at Resideo “shift left” within our product/software development lifecycle. JOB DUTIES: Writing tools that can integrate with the CI pipeline and user facing tools with good user experience. Security testing at scale by building and implementing static and dynamic analysis tools, open source scanning tools and integrating security into a CI/CD workflow. Experience in management of container security tools such as Prisma Cloud and Aquasec. Leveraging automation to secure public cloud (. AWS and Azure) environments by default. YOU MUST HAVE: 5+ years of Security and Automation experience: Proficiency in securing AWS and Azure environments through automation; expertise in securing production container ecosystems (Docker, EKS, Fargate/ECS, Kubernetes) in a continuous delivery environment using Jenkins, Ansible, Terraform, or similar programs. Software Development and Application Frameworks: Expertise in any one of the mentioned languages (Python, JavaScript, Golang or other related scripting languages); experience with application development frameworks, build systems, and CI tool integration. Code Review and Security Tools: Proficiency in reviewing/auditing compiled and interpreted languages; familiarity with SAST, DAST, and OSS scanning tools; understanding of common software and web application security vulnerabilities. Authentication, Authorization, and Cyber Threats: In-depth knowledge of authentication protocols and authorization standards (., SSL/TLS, SAML, OAuth, JWT tokens), understanding of modern cyber threat landscapes, and experience in implementing robust security measures. Communication and Education: Effective written and oral communication skills; Bachelor’s degree required. WE VALUE: Contributions to open-source tools, particularly security tools. Experience developing and rolling out security tools that have been received well by developers. Experience in software security testing, methodologies and frameworks. WHAT'S IN FOR YOU: Opportunity to impact and contribute to global company initiatives. Benefits including 100% employer paid Medical Benefits, Public Transportation, Fuel Vouchers, Holiday Vouchers, Meal Vouchers, Flexible Benefit Allowance, and more. #LI-MA1 #LI-Hybrid