🌎
This job posting isn't available in all website languages
Experian Careers Job Search

Security DevOps Engineer (DevSecOps)

📁
Information Technology & Systems
📅
202515 Requisition #

The DevSecOps Engineer is a hands-on technical position responsible for operating a diverse set of cloud security controls and monitoring processes. This role will work directly with security architecture teams to improve security posture and automation capabilities.

 

About us, but we’ll be brief

 

We are thrilled to share that FORTUNE has named Experian one of the 100 Best Companies to Work For. In addition, for the last five years we’ve been name in the top 100 “World’s Most Innovative Companies” by Forbes Magazine.

 

Experian Consumer Services – Careers That Define “The Next Big (Data) Thing” for Consumers

 

What could be more exciting – personally and professionally – than being part of a “disruptive” business? Consider taking your career to the next level by joining the Leader that continues to disrupt the competition. As the “disruptor” and market leader we pride ourselves on building new markets, leading the pack through continuous evolution and innovation. It’s a position Experian Consumer Services has enjoyed for more than a decade and we’re always looking for the talent that can help expand that lead.

 

When you’re the leader, it’s always urgent, important and market-changing. We think that defines the true “disruptive” business. Join us and create some chaos for the competition.

 
What you’ll be doing
  • Continuously improve the security of our e-commerce products
  • Comply with a range of security and regulatory requirements (internal and external)
  • Respond to audit requests and requirements
  • Manage cloud security tools such as WAF, IDS/IPS, Anti-Virus, Integrity monitoring, vulnerability scanning and cloud security/compliance monitoring frameworks.
  • Operate and analyze network traffic flow, application, and infrastructure logs in order to identify suspicious activity or behavior anomalies.
  • Assess infrastructure and application vulnerabilities, and take remediation actions as appropriate.
  • Operate and manage AWS IAM permissions based on defined roles and responsibilities.
  • Ensure tight security for an ecommerce platform including data encryption, security groups, environment scanning, etc.
  • Partner with Experian Global Security office to ensure policies and standards are being properly applied.

Based on a “developer self-service model”, our cloud-computing “Platform as a Service” product automates:

  • AWS resource provisioning and management (based on immutable compute resources)
  • Build pipeline supporting Continuous Delivery, SDLC Security tools, including support for canary and blue green releases
  • Container based delivery (Docker) and serverless workflows (Lambda, Step-Functions).
  • Micro-service support (service registry, service-to-service authentication, authorization and auditing)
  • Event management and analysis via logging and event data pipelines
  • Instrumentation, monitoring, notification, and alerting
  • Data pipeline from transaction support (Dynamo) to BI (RedShift)

The current Platform has been implemented primarily as “infrastructure as code”, so experience with Python, or equivalent experience with other scripting or infra-coding tools is essential. The Platform is being managed as a true software product (story backlog, product roadmap, developer involvement in product direction), so Agile Product Oriented Development experience is also important.

 
Responsibilities:
  • Collaborate with information security, DevOps and engineering teams to identify Platform needs and issues with respect to security
  • Collaborate with key third party security partners to ensure that security controls adhere to defined policies and mitigate risks.
  • Daily operational security controls and monitoring.
  • Author Agile stories, estimate story points, assist with sprint planning and retrospectives
  • Perform advanced security technical troubleshooting for cloud and e-commerce environments
  • Participate in incident response exercises and continue documenting security and incident response procedures.
What your background looks like


Education and Experience:

  • 3+ years experience in Information Security, and/or Ops or DevOps role, focused on automated solutions supporting security
  • Security certifications such as CISSP, CCSP, GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handler (GCIH) are a plus
  • Fluency in Python or other programming or scripting languages
  • Production experience with public cloud (AWS, Google or Azure – AWS strongly preferred)
  • Experience with a variety of open source technologies and tools in support of cross-team collaboration
  • Bachelor of Science or comparable experience

Qualifications Required:

  • Knowledge of the InfoSec/DevOps tools chain focused on the AWS Linux platform
  • Experience deploying automation solutions in a public cloud environment such as AWS
  • Knowledge of PCI/HIPPA and other security related standards and requirements
  • Experience supporting security audits
  • Operationally savvy, experience with monitoring, alerting, and analyzing system metrics to identify problems and understanding system behavior specific to security concerns
  • Ability to work in a fast paced, e-commerce environment
  • Strong communication and collaboration skills
  • Strong problem solving skills
  • A passion for security and innovation
  • Collaboration, drive open communication and reach across functional borders
Perks
 

EOE including Disability/Veteran

Refer a Friend

Know someone who would be perfect for this role?  Experian employees can refer a friend for an open role by clicking on the Recommend This Job button and choosing Grab a referral link (you must be logged in to do this).  Once you have copied the link you can share it with your friend via email or social media.  When your friend applies to the role using the link you provided, you will be captured as the referring employee.  Simple as that!


External candidates can also share an open role with a friend by clicking on the Share this Job button.  

My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions

Similar Listings

Costa Mesa, California, United States

📁 Information Technology & Systems

Costa Mesa, California, United States

📁 Information Technology & Systems

Costa Mesa, California, United States

📁 Information Technology & Systems

Privacy Policy  |  Online Community  |  Press  |  Investor Relations