Publix Super Markets logo

Sr Engineer 2 - DevSecOps (Remote)

Publix Super Markets
Remote
United States
DevSecOps
Publix can offer virtual employment for this position in the following states: FL, GA, AL, TN, SC, NC, VA, KY.

Welcome to Publix Technology, the award-winning technical group for Publix Super Markets, Inc., the largest employee-owned company in the nation. Our technology teams of 2100+ associates provide cutting-edge, modern solutions to nearly 1400 retail stores and 200,000+ internal team members across 8 states. We offer positions at all levels - summer internships, individual contributor roles, to technical leadership across a broad range of technical disciplines. So, whether you are interested in IT security, platform engineering, architecture, software development, or infrastructure - we have a career path for you! Pub Subs are not the only thing we build from scratch. See for yourself why Publix Super Markets, Inc. has been on Fortune's 100 Best Companies to Work For list.

As a Senior DevSecOps Engineer, you will be a subject matter expert, designing, deploying, integrating, and tuning Cloud security technologies. You will lead projects to integrate security solutions while coordinating efforts across teams. This position will also provide security best practices and guidance to for Publix Super Markets, Inc.

Responsibilities:
  • Serves as an Information Security Subject Matter Expert (SME) by maintaining knowledge of industry-recognized security technologies and concepts,
  • Assist with planning and managing project efforts to define, implement, upgrade, enhance, and maintain DevSecOps solutions (SAST/SCA/IAC/Secret Detection/DAST), CI/CD Security, and cloud-native application protection platform (CNAPP),
  • Work closely with stakeholders for data enrichment, data analytics, and reporting using Kusto Query Language (KQL), and Power Bi,
  • Create security automation using (PowerShell, Python, etc.) via deployment pipelines for detection, response, and remediation of compliance findings and hardening of cloud infrastructure for Azure and Google Cloud Platform (GCP),
  • Play a key role in ensuring our cloud capabilities meet PCI/SOX/HIPAA/PII compliance standards,
  • Provide security consultation and guidance on new cloud products, features, and technology decisions,
  • Work closely with various team members to refine and enhance the risk strategy for cloud architecture,
  • Actively engage and foster relationships with security champions on business and cloud teams to understand their needs and evangelize a β€œshift left” DevSecOps culture,
  • Participate in on-call rotation
  • Must have a bachelor’s degree in computer science, Information Systems, Information Security or other technical/analytical disciplines, or equivalent experience,
  • 4+ years of demonstrated DevSecOps experience.
  • 1+ year of experience with Infrastructure-as-Code (Ansible, Terraform, etc.)
  • 1+ year of experience with CI/CD automation tools (Jenkins, Azure Pipelines, etc.)
  • 1+ year of experience with Automation and Scripting (PowerShell, Python, etc.)
  • Experience with engineering and developing dashboards and reporting using Azure Data Explorer, KQL and Power BI
  • Experience with securing Cloud resources using enterprise tools such as Microsoft Defender for Cloud, Prisma Cloud, and/or Google Security Command Center
  • Understanding of security requirements, best practices, and execution in various cloud implementation scenarios: IaaS, PaaS, SaaS,
  • Knowledge of compliance and regulatory security requirements (SOX, PCI, HIPAA)
  • Continued education including additional or advanced degrees in analytical, technical, or business discipline,
  • Experience with automation, deployment orchestration, and security configuration management with Terraform, Chef, Puppet, YAML, JSON, PowerShell, BASH, Go, or Python,
  • Experience with hardening CI/CD pipelines, containers, container registries, and code repositories, and use of tools such as Jenkins, GitHub, Azure DevOps, etc.,
  • Experience deploying and managing container workloads in Kubernetes or OpenShift
  • Experience in project management and leading projects to completion,
  • Understanding of Agile methodologies,
  • Experience monitoring and projecting costs and consumption in an Azure/GCP
  • Familiarity with CIS (Azure, GCP) and Microsoft Cloud Security benchmarks,
  • Strong interpersonal and communication skills, including experience working with other teams,
  • One or more of the following certifications: Security +, Cloud +, Microsoft Certified DevOps Engineer Expert – AZ-400, SANS SEC540: Cloud Security and DevSecOps Automation, Microsoft Certified Azure Security Engineer Associate (MCASEA), Certified Cloud Security Professional (CCSP), and/or Certified Information Systems Security Professional (CISSP), ISSAP/ISSEP/ISSMP concentration preferred.