Ankr Health
Location
Bangalore | India
Job description
Job Title: DevSecOps Engineer Location: Bangalore (On-site). May require travel to USA Position Type: Full-time
About Us: Ankr Health is a US-based company with offices in San Francisco, Houston, and Bangalore. We create transformative technologies for clinics and hospitals to improve patient outcomes. Our flagship platform is the # 1 side effect management solution for oncology and surgery. If generative AI is your thing, know that we were one of the first healthcare companies to partner with, and receive funding from, OpenAI. We have nearly 2 years more experience with LLM than most companies in the world. Learn more at We are inviting DevSecOps Engineer to join our global IT team. You will get to work directly with US-based expert developers and experience extraordinary personal growth at Ankr Health. Responsibilities: Collaborate with development, operations, and external security teams to develop and implement DevSecOps best practices. Design, implement, and maintain secure CI/CD pipelines for continuous integration and delivery of software applications in AWS and Azure. Develop and implement security audits for compliance with HIPAA , SOC-I and SOC-II . Conduct regular security assessments and vulnerability scans and implement appropriate remediation measures. Implement and manage security controls and tools to safeguard applications and infrastructure. Implement central logging solution for diverse set of applications. Work closely with development teams to embed security into the software development lifecycle. Consult on DevSecOps requirements from diverse application/line of business partners. Troubleshoot, identify, and fix problems in the DevSecOps domain Ensure incident tracking tools are updated in accordance with established norms and processes, gather all essential data and document any discoveries and concern. Automate security testing processes and integrate them into the CI/CD pipeline. Monitor and respond to security incidents, ensuring timely resolution and documentation. Stay up to date with the latest security trends, threats, and technologies to continuously improve security posture. Requirements: Education: Bachelor's degree in computer science, engineering, or a related field. Experience: Proven 5 to 10-years' experience as a DevSecOps Engineer with a strong portfolio of relevant projects. Comprehensive technical expertise in a variety of DevSecOps toolkits, including Ansible, Jenkins, Artifactory, Jira, Black Duck, Terraform, Git/Version Control Software, or comparable technologies In-depth knowledge of cloud platforms and services (e.g., AWS, Azure, GCP). Familiarity with security standards and frameworks (e.g., SOC-I, SOC-II, HIPAA, OWASP, NIST, CIS). Recent experience in at least one of these is required, and we will provide training on others. Strong background in software development, scripting, and automation. Experience with containerization and orchestration tools (e.g., Docker, Kubernetes). Hands-on experience with security tools such as static code analysis, dynamic analysis, and vulnerability scanners. Excellent communication and collaboration skills, with the ability to work effectively in cross-functional teams. Relevant certifications (e.g., CISSP, AWS Certified Security Specialty) are a plus. Technical Skills: DevOps Tools and Technologies: Jenkins, Git, Docker, Kubernetes, Ansible, Terraform, Puppet, Chef, AWS, Azure, GCP Security Tools and Technologies : OWASP, Nessus, Burp Suite, Security Onion, SIEM Infrastructure as Code (IaC): Terraform, CloudFormation, Ansible Cloud Security: AWS Security Groups, Azure Security Center Application Security: Secure coding practices, vulnerability scanning, penetration testing Incident Response and Forensics : Incident handling, log analysis, digital forensics Compliance and Risk Management : GDPR, HIPAA, SOC-I, SOC-II, ISO 27001, NIST Collaboration and Communication : Agile, Scrum, Jira, Confluence Security Tools : SonarQube, OWASP ZAP, Burp Suite, Nessus Monitoring and Logging : ELK Stack, Prometheus, Grafana Soft Skills: Strong problem-solving and analytical skills. Excellent communication and teamwork skills. Ability to adapt to new technologies and learn quickly. Attention to detail (are you reading this? Let us know during the interview!) and a commitment to delivering high-quality work. Benefits: Extremely generous compensation with salary in top decile for your office location Opportunities for rapid growth (in title, responsibilities, skills, income) And more (discuss during interview) Does this excite you? Pique your interest? If so, apply now!Job tags
Salary