Graduate and Experienced Jobs at DotModus

Scope:

DotModus, industry-specific, scalable cloud solutions and Premier Google Partner, are looking for a Senior Security Engineer. You will make things more secure by protecting system boundaries, keeping computer systems and network devices hardened against attacks and securing highly sensitive data.

Responsibilities:

• Codification and automation of security assurance across all layers of the stack (Application, Integration, Cloud Hosting and DevOps).
• Work with the lead and domain engineers to formulate solutions in line with business goals and security principles.
• Define, document and implement security assurance engineering solutions.
• Embedding security assurance automation into DevOps and CI/CD.
• Provide hands-on support during investigations and PoCs.
• Take solution ownership from inception to delivery.
• Embedding security into Agile (DoR, DoD, user stories, acceptance criteria etc.).
• Contributing to security engineering patterns to be applied across multiples cloud providers and technologies.
• Preparing engineering artifacts.
• Reviewing configurations and Infrastructure as Code for security weaknesses.
• Supporting architects take designs through appropriate governance and sign-off.
• Act as an SME for security engineering related topics and issues.
• Contributing to Threat Models.
• Promote ‘security is codified’ ethos when engaging feature teams and Dev‐Ops teams.

Candidate Profile:

• Deep functional experience in penetration testing, threat modeling, scripting, and test automation.
• A strong platform, scripting, and automation experience.
• Demonstrable experience developing re-usable security patterns, guidance, and scripts.
• DevOps toolchain integration experience.
• Experience implementing solutions aligned to industry standards e.g. ISO27001, NIST, etc. in a large organisation.
• Experience delivering projects using one or more cloud providers e.g. AWS, Azure or GCP.
• Working knowledge of GDPP.
• Experience securing Big Data solutions and customer-facing Web Applications.
• Detailed knowledge across a broad range of security domains.

go to method of application »

Scope:

DotModus, industry-specific, scalable cloud solutions and Premier Google Partner, are looking for a DevOps Security Specialist. You will make things more secure by protecting system boundaries, keeping computer systems and network devices hardened against attacks and securing highly sensitive data.

Responsibilities:

• Collaborate with Security Engineers and DevOps Engineers to formulate designs that can be built, tested and deployed through the Route to Live and into Production using continuous integration/deployment.
• Development of code that can be pulled into the DevOps pipeline to deliver security enhancements.
• Identify and implement DevOps Security best practices.
• Contribute to the development and delivery of a DevOps Security reference architecture.
• Provide DevOps support to Security Engineering spikes and POC’s.
• Continuous learning and evaluation of the latest approaches, tools, and technologies.

Candidate Profile:

• An individual thinker, not afraid to think outside of the box and to challenge preconceived ideas.
• A passionate advocate of continuous deployment.
• Industry experience working with Big Data platforms is beneficial.
• Knowledge of microservice architecture.
• Ability to quickly learn and apply emerging techniques, frameworks, and platforms.
• Working experience with Docker and/or Kubernetes an advantage.
• Good communication and collaboration skills.

Technical Skills:

• Must be from a UNIX / Linux background.
• Strong working knowledge of security concepts, frameworks, and best practices.
• Working knowledge of cloud security service design approaches and concepts is preferable (Azure, AWS or GCP).
• Working knowledge of container management technologies (emphasis on Kubernetes).
• Working knowledge of continuous integration and automated testing.
• Experience in one of more popular CI platforms (e.g. Jenkins, Bamboo, Travis) required.
• Experience with Helm package manager an advantage.
• Strong experience in at least one major cloud platform required.
• Experience with Draft and Brigade an advantage.
• Working knowledge of Ansible and Terraform required.
• Strong TCP/IP skills required.
• A good understanding of PKI required.
• Strong scripting skills required (bash/sh/ksh).
• Experience in another language (e.g. Golang, Javascript, Python, Perl) an advantage.

go to method of application »

Scope:

DotModus, industry-specific, scalable cloud solutions and Premier Google Partner, are looking for an IAM Engineer. The IAM Engineer is responsible for implementing (installing) an IAM software package, configuring the IAM tool in the IT landscape, configuring connectors to a source (HRM) and target systems (AD, applications, Cloud systems) and developing drivers, portals and other software components.

Responsibilities:

• Work with the Lead Architect and Identity & Access Management (IAM) domain engineers to formulate solutions in line with business goals and security principles.
• Define, document and implement Attribute-Based Access Control (ABAC) solutions in the Global Data Platform and other DAN services as required. 
• Define, document and implement ABAC policy lifecycle (Deploy, Manage, Audit, Deprecate).
• Provide hands-on support during RfP’s and PoCs that DAN conducts for IAM and ABAC solutions and tooling.
• Take IAM/ABAC solution ownership from inception to delivery.
• Work with DAN Agile practices (definition of ready, the definition of done, user stories, acceptance criteria, etc.) to ensure consistent documentation and tracking/ownership of work.
• Contribute to security engineering IAM/ABAC patterns to be applied across multiple cloud providers and technologies.
• Supporting Security Architects in taking designs through the appropriate governance and sign-off.
• Act as a Subject Matter Expert (SME) for security engineering IAM and ABAC related topics and issues.
• Contributing to Security Engineering Threat Models as the IAM SME.

Candidate Profile:

• Experience in testing, modeling, scripting and deploying Attribute-Based Access Control Services (PingID, Forgerock, Axiomatics, SymphonicSoft, PlainID, and NexLabs).
• Experience protecting Web/Cloud Applications via Identity & Access Management (IAM) and Attribute-Based Access Control (ABAC) policies and processes.
• Exposure to IAM and ABAC security domains – Attributes, Identities, Credentials, Policies and Audit, Logging and Monitoring. 
• Demonstrable experience developing re-usable security patterns, providing advice and guidance for ABAC attribute deployments in the form of consultancy to other DAN Teams.
• Experience delivering projects using one or more cloud providers e.g. AWS, Azure or GCP.
• Desirable - DevOps toolchain integration experience – setting up code repositories to pull infrastructure and service builds.

go to method of application »

Scope:

DotModus, industry-specific, scalable cloud solutions and Premier Google Partner, are looking for an Application Security Architect who will work closely with the development team to build computer security programs. The primary role of the Application Security Architect is to provide support to ensure that company-wide application security needs are identified and addressed through the cost-effective application of proven control processes and technology. The Application Security Architect will define, document & maintain the application security strategy and architecture.

Responsibilities:

• Produce security architectures and low-level application security designs involving; client security requirements, structured and unstructured data protection, authentication and authorization, API G/W’s, microservice API’s and threat management.
• Influence solutions architecture development to ensure alignment with security principles and requirements.
• Identification of security architecture and design decisions and management of decisions through architecture governance processes.
• Manage cross-functional internal and external team collaboration and the promotion of security requirements across teams.
• Collaborate with IAM specialists and cloud security specialists to deliver end-to-end solutions.
• Work with technical product owners to develop technical backlogs for security engineering and internal feature team delivery.
• Development of application security patterns and technical security standards.
• Promote re-use of established security patterns.
• Develop and maintain application threat models for enumerating and manage security requirements and to enable management of security requirement delivery.

Candidate Profile:

• 10+ technical security architecture development experience.
• Deep functional experience engaging agile feature teams.
• Proactive self-starter capability of delivering with minimum supervision.
• Experience implementing solutions aligned with industry security standards.
• Experience with Big Data solutions and customer-facing web applications.
• Proven ability to deliver compliance with global data protection regulation and customer contractual requirements.
•  Ability to effectively present and communicate security threats and risks to any audience and impress upon them the mitigation techniques and strategies.
• Excellent communication, influencing and negotiating skills.
• Strong working knowledge of security concepts, frameworks, and best practices.
• A background in penetration testing is desirable.