Not Authorized
You are currently not authorized to access this section.
Please contact your Administrator to change your authorization settings.
Please contact your Administrator to change your authorization settings.
Development Security Operations Engineer
Jenkintown, PA
Job Description
Development Security Operations Engineer
Become a Part of the NPT Team
National Philanthropic Trust is a public charity dedicated to providing philanthropic expertise to donors, foundations, and financial institutions, enabling them to realize their philanthropic aspirations. NPT was founded in 1996. Since that time, we have raised more than $57.3 billion in charitable contributions and currently manage $35.1 billion in charitable assets. We have made more than 720,000 grants totaling more than $28.5 billion to charities all over the world. We rank among the largest grantmaking institutions in the United States.
Our mission is to increase philanthropy in society. To that end, our experienced staff of philanthropic professionals are fully prepared to help you establish and administer your donor-advised fund. NPT is led by a Board of Trustees composed of nationally known experts in philanthropy and business.
At National Philanthropic Trust, we foster a welcoming environment for all.People are valued and respected for who they are-with opportunities to bring theirentrepreneurial spirit andtalents to increase giving around the world. We have an inclusive, supportive, collaborative culture that makes National Philanthropic Trust one of the most rewarding places to work.
What You'll Do
The Development Security Operations Engineer utilizes DevSecOps practices and tools across multiple cloud environments. This role requires a hands-on contributor with significant Azure expertise and extensive knowledge of AWS. The ideal candidate will possess experience integrating automated security testing, vulnerability scanning, and compliance checks within cloud-native development pipelines. They will collaborate with Technology Solution Teams to develop and maintain secure cloud resources and routinely conduct security assessments. Additionally, they will monitor security alerts, implement remediation actions, stay current with best practices, and provide security guidance.
Salary range: $80,000-$85,000
Duties/Responsibilities:
- Implement and maintain DevSecOps processes and tools for cloud environments, ensuring security integration throughout the software development lifecycle (SDLC). This includes designing, refining, and continuously enhancing automated security testing, vulnerability scanning, and compliance checks within development pipelines.
- Design and implement secure CI/CD pipelines using Azure DevOps, incorporating best practice security controls.
- Develop and maintain Azure Resource Manager (ARM) templates and Azure PowerShell scripts for secure cloud resource provisioning and configuration.
- Conduct security assessments and penetration testing of Azure cloud applications and infrastructure.
- Monitor Azure Security Center alerts and implement remediation actions to address vulnerabilities and compliance issues.
- Stay informed about Azure cloud security best practices and emerging threats.
- Recommend pipeline improvements and implement security enhancements.
- Provide guidance and support to development and operations teams on Azure-specific security configurations and controls.
- Participate in developing and maintaining disaster recovery and incident response plans for multiple cloud environments.
The above list is not exhaustive, additional tasks may be assigned as necessary but are not a major function of the position.
What You Bring:
- Knowledge of cybersecurity concepts and frameworks like NIST, CIS, and ISO 27001.
- Proficiency in secure software development practices (e.g., OWASP Top 10), the ability to influence and manage .NET dependencies for UiPath environments, application of security principals to Robotic Process Automation, and proficiency in scripting and automation languages (PowerShell, Python preferred).
- Possess an immersed understanding of Azure IAM and expertise in containerization technologies (Docker, Kubernetes) for secure application deployment and monitoring in Azure Kubernetes Service (AKS). Skilled in Azure security tools and services (Azure Sentinel, Azure Firewall, Azure Key Vault).
- Expertise in API ecosystem orchestration and security, with proven ability to ensure unified integrations and safeguard business processes through secure API design (REST/Graph) evaluation from both development and consumption perspectives.
- Experience with IaC tools (Terraform, ARM) and DevOps automation tools (Jenkins, CircleCI) in Windows and Linux environments with security and monitoring agents.
- MuleSoft craftsman with comprehensive understanding of API Lifecycle Management and familiarity with Maven build automation for MuleSoft build pipelines.
- Familiarity with Salesforce deployment workflows and conducting security reviews of customized platform releases.
- Strong insight of AWS cloud services, capable of providing awareness and guidance.
- Concentrated acumen of Azure IAM, proven practice in Azure DevSecOps, and broad hands-on experience with key Azure services (security, DevOps, and automation).
- Highly motivated problem-solver with excellent communication (written & oral) to manage multiple tasks, prioritize effectively, and thrive in a collaborative environment while independently driving success, embodied with strong analytical skills, integrity, patience, creativity, and flexibility.
Education and Experience:
- Bachelor's degree (required) and/or Master's degree (preferred) in Cybersecurity, Technology, Information Systems, Computer Science, or a related field, or equivalent experience.
- Azure Security Engineer Associate or Azure DevOps Engineer Expert preferred.
- AWS Certified DevOps Engineer or AWS Certified Security - Specialty preferred.
- Other relevant certifications (Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP)) considered a plus.
- 5 years of experience in DevOps and/or DevSecOps roles.
- 5 years of cloud platform experience with extensive knowledge of both Azure and AWS.
- 3-5 years of development experience with scripting automation and tooling development.
- 5 years of experience with security practices, tools, and methodologies, including security automation and vulnerability management.
- 3-5 years of experience with proficiency in infrastructure management, including designing, provisioning, and maintaining cloud infrastructure with proven experience in Infrastructure as Code (IaC).
Physical Requirements:
- Prolonged periods of sitting at a desk and working on a computer.
Job Summary
Company
Start Date
As soon as possible
Employment Term and Type
Regular, Full Time
Required Education
Bachelor's Degree
Required Experience
5+ years
Required Security Clearance
Other Clearance
Email this Job to Yourself or a Friend