DevOps (Security) in Amazon Partner Company

Maya B LLC is an international holding company that has been working in the field of e-commerce for more than 15 years. Our head office is located in the USA, development offices in Ukraine, USA. The company has more than 50 employees. Today, Maya B LLC manages 5 subsidiary companies registered in the USA, Canada and Ukraine. At this stage, we are looking for DevOps (Security) to join the company's internal product development team. Technologies we use: Programming languages: PHP 8, Javascript; Frameworks: Symfony, Laravel, React/Redux, Vue.js; DB: PostgreSQL, Citus, Redis, Elasticsearch; MB: Redis Stream, Amazon SQS; Apache Airflow, Docker , Zabbix, GitLab, Confluence Responsibilities: IT Security: Protection of data, software and monitoring access to them (including encryption) Improving the protection of used software (including databases, web servers and frameworks). Version control and security Git repositories. Monitoring of network activity and detection of anomalies (firewall, ports, etc.) Conducting regular code review to detect vulnerabilities in applications (including SQL injection) System administrator: Setting up virtual private networks (VPN). Optimization of DBMS settings (PostgreSQL, Elasticsearch) and infrastructure scaling (including clustering). Configuration and regular data backup. General control of errors and logs, including abnormal traffic monitoring and response to it. Access control and Sudo settings and proxying of requests to third-party services. DevOps: Setting up CI/CD Pipeline (GitLab, auto build/tests, deployment): Container management Automatic code standards checking tools Access control (release, control, feedback) Automated administration system (Puppet, Chef, etc.), synchronization of settings on all on servers Requirements: Deep knowledge and experience with modern IT security tools, such as IDS/IPS, WAF and intrusion monitoring systems. Writing properly commented and well-structured code for scripts and automated processes. Excellent knowledge of scripting programming languages ​​(eg Python, Bash) to automate routine administration tasks. Knowledge of monitoring principles and log analysis to identify anomalous activity and potential threats. Ability to work with infrastructure code and deployment automation tools such as Ansible, Terraform. Experience with infrastructure configuration management such as Puppet, Chef. Knowledge of basic principles working with networks and network security. The ability to work in a team and flexibility in solving tasks. An advantage will be: Cyber ​​security certificates (CISSP, CISM, CEH, CCSP, CRISC). Experience with the GCP cloud service. Knowledge of legislative and regulatory requirements for cyber security .Experience with Kubernetes, Docker SwarmAvailability of competencies: Orientation to resultsSystem thinkingAbility to find alternative solutionsResponsibilitySelf-disciplineAttention to detailsAbility to work in a teamWorking conditions:Work schedule: 8-hour work dayRemote workPaid vacation 20 calendar daysDay off 5 daysFriendly and professional team Opportunity to develop, learn (including at the expense of the company)