Welcome to RemoteYeah 2.0! Find out more about the new version here.

Remote DevSecOps Engineer

at Doctify

Posted 1 day ago 0 applied

Description:

  • Doctify is a global HealthTech leader focused on building a network of validated healthcare providers and experts.
  • The company aims to help millions of patients find the right doctor or clinic when they need care.
  • They are backed by over $30 million in funding and operate across five countries, having supported over 100 million patients.
  • The role of DevSecOps Engineer involves embedding security into every stage of the software development lifecycle.
  • The engineer will ensure that the SaaS cloud platform is robust, secure, and scalable.
  • Responsibilities include integrating security practices into CI/CD pipelines, collaborating with developers and operations, automating infrastructure provisioning, monitoring security incidents, conducting code reviews, and maintaining security documentation.
  • The engineer will also implement security controls in cloud environments, write code to fix vulnerabilities, create monitoring systems, and develop internal security tools.

Requirements:

  • Candidates must have experience with cloud platforms such as AWS and GCP, along with knowledge of cloud security best practices.
  • Familiarity with CI/CD tools like Gitlab or GitHub and security scanning tools such as SAST, DAST, and OWASP is required.
  • An understanding of containerization technologies like Docker and Kubernetes, along with their security considerations, is necessary.
  • Previous experience in a SaaS or cloud-based product environment is essential.
  • A strong background in Linux is required.
  • Proven development experience with Node.js and Python is desirable but not mandatory.
  • Hands-on experience in fixing security vulnerabilities in web applications and APIs is necessary.
  • Knowledge of API security development, including OAuth, JWT, rate limiting, input validation, and secure data serialization, is required.
  • Candidates should have an understanding and practical experience with ISO 27001 standards.
  • Strong communication skills and a collaborative, problem-solving approach are essential.

Benefits:

  • The position offers the opportunity to shape the security culture and practices of a growing SaaS business.
  • Candidates will have the chance to work across the full stack of modern DevSecOps tools and methodologies.
  • The role is part of an agile and collaborative team environment.
  • Employees will be involved in meaningful work that impacts millions of patients globally.