Us Citizen
Green Card
Corp-Corp
Consulting/Contract
UG :- - Not Required
PG :- - Not Required
No of position :- ( 1 )
Post :- 27th Oct 2021
Required Skills:
• Programming knowledge and coding experience, particularly Python, JSON, JAVA, and Bash Experience working with APIs
• Experiencing parsing (HTML, XML, etc.)
• Proficient in Github and Jenkins
• Docker experience in automating deployments and testing
• Security or Cybersecurity experience
Work to be performed:
• Create Code Dx Containers for the CI/CD Pipeline
• Develop custom Docker containers to call out to a vulnerability management tool to check for open vulnerabilities in an application, verify results using custom rules, and print results into report(s)
• Deliverables:Series of containers set up to run security requirements within Jenkins verification pipeline(s) and replace existing individual containers.
• Documentation
• Develop and transition artifacts to operational teams, including:Documentation to troubleshoot, re-create, and leverage containers
• Outline of manual workarounds, if any
• Create Sysdig Containers for the CI/CD Pipeline
• Develop custom Docker containers to execute security configuration checks on developer containers, verify results using custom rules, and print results into report(s).
• Deliverables:Series of containers set up to run security requirements within Jenkins verification pipeline(s).
• Documentation
• Develop and transition artifacts to operational teams, including:Documentation to troubleshoot, re-create, and leverage containers
• Outline of manual workarounds, if any
• Security CI/CD Tool Enhancements and Pipeline Maintenance
• Perform maintenance of the CI/CD pipelines and existing security tools and code/containers throughout the length of the engagement, including troubleshooting of issues in the pipeline and bug/feature enhancements.
• Deliverables:Updated security tool containers with requested feature enhancements made Parallelize security scans in the CI/CD pipelines
• Documentation
• Develop and transition artifacts to operational teams, including:Documentation to troubleshoot, re-create, and leverage containers
• Outline of manual workarounds, if any
• Create application for automatic security reviews in JIRA
• Develop a custom application to review developer stories in JIRA to determine the security testing requirements based on security criteria/ information provided in the ticket and update the issue tracker with the type of testing required. Deliverables:A script that runs daily and updates the JIRA stories with the types of security testing required Documentation
• Develop and transition artifacts to operational teams, including:Documentation to troubleshoot Outline of manual workarounds, if any
• Automate Ad-Hoc Security Engineering Processes
• Develop custom scripts to automate routine Security Engineering tasks as requested by OCC (as time permits). Deliverables:Custom scripts
• Documentation
• Develop and transition artifacts to operational teams, including:Documentation to troubleshoot Outline of manual workarounds, if any.