AMPLY DevSecOps Engineer Jobs in Seattle, WA at bp

Title: AMPLY DevSecOps Engineer

Company: bp

Location: Seattle, WA

Job Profile SummaryWant to be part of something Electrifying? AMPLY Power, a wholly owned subsidiary of bp, needs you to help us on our adventure to get to an Electric Future and become NetZero. We’re looking to meet the growing global demand for safe, sustainable, and affordable energy. AMPLY is passionate about redefining the commercial transportation sector by removing the challenges, surprises, and learning curves that fleet operators often face when switching to electricity as a fuel. To do this, we need to rapidly grow our extraordinary team with the best EV authorities out there. You can help us get there, we’re searching for skilled EV experts who are passionate and curious individuals to join our team to help the world electrify!

We are seeking a Development Security Operational Engineer to help us build functional systems that improve customer experience. AMPLY’s DevSecOps Engineer responsibilities will include deploying product updates, identifying production issues and implementing integrations that meet customer needs, in addition to leading the states of build, deployment, and runtime security in AMPLY’s cloud environments. Ultimately, you will execute and automate operational processes fast, accurately, and securely. If you have a solid background in software engineering and are familiar with Node.js or Java, security, & AWS microservices, we’d like to meet you.

Job AdvertKey Accountabilities:

Providing Level 2 technical support

Collaborate with engineering and security teams on container security strategy

Review current container environment and assess for threats and vulnerabilities

Participate in architecture security reviews for Ops engineering

Partner with security operations, detection & response, and engineering security on design and architecture reviews for build CI/CD infrastructure

Customize cloud compliance tools to meet operational, audit and risk-based needs

Respond to and, when appropriate, resolve or escalate security incidents

Investigate and resolve security violations by providing postmortem analysis and identify causes, possible solutions, and preventative measures

Implement cloud platform infrastructure, tagging, networking, micro-segmentation, VPC & Subnets, firewalls, certificate management, and IAM policies

Implement cloud storage, backup, high availability, and disaster recovery strategies

Adhere to “best-in-class” engineering by ensuring that services and components are well-defined, modular, secure, reliable, reusable, diagnosable, and actively monitored

Implement continuous integration, deployment, branching strategies, rollout strategies

Prototype and experiment with multiple solutions to evaluate the pros and cons of alternative architectures and designs, and by using data to make decisions

Conduct periodic security reviews and testing

Job Requirements:

Bachelor’s Degree in Computer Science, Mathematics, Physics, or equivalent

5+ years of experience with Java/Node.js/Python, web and mobile application development, API and Microservices usage

You will need to have hands-on experience developing and implementing a security strategy and controls, preferably with a large enterprise

At least 3 years of experience of hands-on container security experience including AWS microservice architecture

Significant experience in cloud security architecture and infrastructure

Preferred hands-on experience in information security technologies such as security design review, threat modeling, OWASP Top 10, risk analys…